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CLEAR  CHOICE  TEST: 
INTRUSION  PREVENTION 


Cisco  IPS  7.0 
raises  the  bar 

New  global  threat 
correlation  feature  boosts 
effectiveness  of  intrusion- 
prevention  devices. 
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The  IPS  7.0 
software  can 
be  deployed  on 
appliances  in  minutes. 


Are  HP,  3Com  ready  to 
trump  Cisco  switches? 


BY  JIM  DUFFY 


CISCO’S  DOMINANCE  IN  enterprise  switch¬ 
ing  is  legend,  but  HP  and  3Com  have  put 
together  compelling  product  portfolios  and 
value  stories  that  add  up  to  the  first  real  com¬ 
petition  the  switch  king  has  faced  in  years,  and 
buyers  are  beginning  to  pay  attention. 

Quinnipiac  University  on  Connecticut,  a 
Cisco  shop,  recently  upgraded  its  network 
with  gear  from  3Com.  “Several  of  my  peers 
were  curious  as  to  why  we  left  the  mother  ship 
...  but  it  all  fits  into  a  risk-reward  ratio,”  says 
Fred  Tarca,  associate  vice  president  of  informa¬ 
tion  services.  “We  stuck  with  our  fundamental 
principles  of  wanting  a  good  product  at  the 
right  price  that  is  supportable,  with  a  team  and 


The  fact  that  Cisco 
still  carries  the  lion’s 
share  of  the  market  means 
there’s  more  value  placed 
on  things  that  Cisco  offers.” 

ZEUS  KERRAVALA, 

ANALYST,  THE  YANKEE  GROUP 

a  company  to  back  it  up.  Those  requirements 
were  met  by  3Com.” 

3Com  and  HP’s  ProCurve  network  group 
say  their  respective  gear  -  much  of  it  developed 
within  the  last  few  years  -  offers  better  overall 
value  in  terms  of  price,  performance,  port  den¬ 
sity  and  power  consumption. 

See  Switches, page  14 


Gaining  IT  skills  on  the  cheap 


BY  DENISE  DUBIE 


WITH  BUDGET  CUTS  draining  away  train¬ 
ing  dollars,  IT  professionals  have  to  be  creative 
in  finding  ways  to  keep  their  high-tech  skills  up 
to  date. 

“Training  is  almost  always  the  first  to  go 
when  IT  organizations  have  to  cut  budgets,  but 
that  doesn’t  always  mean  employees  or  even 
unemployed  workers  can’t  update  their  skills 
without  spending  a  lot  of  money,”  says  Beverly 


Lieberman,  a  member  of  the  Society  for  Infor¬ 
mation  Management  (SIM)  and  president  of 
Halbrecht  Lieberman  Associates,  an  executive 
search  firm. 

According  to  IT  professionals,  keeping  skills 
fresh  will  benefit  the  individual  as  much  as  the 
employer,  so  it  makes  sense  for  techies  to  take 
the  reins  of  their  professional  development.  And 
for  those  techies  looking  for  work,  prospective 
employers  will  appreciate  the  training  efforts 
Sec  Certification,  page  16 
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Nine  storage  companies 
worth  watching 


They’re  targeting  memory 
virtualization,  cloud  computing 
and  more.  PAGE  22 
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Smarter  technology  for  a  Smarter  Planet: 

Can  the  boundaries  of  a 
business  be  defined  by  its 
people  instead  of  its  walls? 

Businesses  like  nice  solid  walls,  both  the  physical  and  the  fire  variety. 
But  on  a  smaller,  flatter,  smarter  planet,  we  increasingly  find  ourselves 
working  with  people  far  outside  those  walls:  partners,  suppliers, 
customers  and  remote  employees. 

IBM  is  incorporating  new  tools,  like  social  software,  wikis  and  presence 
awareness,  throughout  our  entire  collaboration  portfolio— as  well  as 
new  ways  of  accessing  these  tools  through  the  cloud.  Cloud-based 
solutions  like  LotusLive™  let  your  people  work  with  whomever  they 
want  to,  regardless  of  what  side  of  the  firewall  they  find  themselves  on, 
because  they’re  backed  by  the  legendary  security  you  expect  from  IBM. 

Now  your  organization  can  extend  its  collaboration  infrastructure 
seamlessly  without  the  cost  and  complexity  of  additional  infrastructure. 
So  you  don’t  have  to  tear  down  your  walls  to  reach  beyond  them. 

A  smarter  business  needs  smarter  software,  systems  and  services. 

Let’s  build  a  smarter  planet,  ibm.com/collaborate 


IBM,  the  IBM  logo,  ibm.com,  Smarter  Planet  and  the  planet  icon  are  trademarks  of  International  Business  Machines  Corp.,  registered  in  many  jurisdictions  worldwide.  Other 
product  and  service  names  might  be  trademarks  of  IBM  or  other  companies.  A  current  list  of  IBM  trademarks  is  available  on  the  Web  at  www.ibrn.com/legal/copytrade.shtrnl. 


Let's  make  VoIP  work  for  you. 

And  who  better  to  show  you  how  than  the  experts  at  CDW? 
Our  telephony  specialists  can  help  you  implement 

a  money-saving,  collaboration-improving  VoIP  system. 

Before  you  start  we  can  design,  install  and  test  it  all. 

And  to  top  it  off,  we  can  even  train  you  on  how  to  use  everything. 
So  let's  start  seeing  and  hearing  your  ROI  today. 

Let's  get  going. 


HP  PROCURVE 
2610-24-PWR  SWITCH 


$1199" 


CDW  1387296 
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CISCO®  UNIFIED  IP 
PHONE  7942G 


Call  CDW  for  pricing 

CDW  1300067 


SHORETEL®  SHOREPHONE 
IP  230 


©ShoreTet 


Call  CDW  for  pricing 

CDW  1008782 


Find  out  more  about  VoIP  from  one  of  the  telephony  specialists  at  CDW. 
CDW.com  1 800.399.4CDW 


The  Right  Technology.  Right  Away.' 


Offer  subject  to  CDW's  standard  terms  and  conditions  of  sale,  available  at  CDW.com.  ©2009  CDW  Corporation 
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GOODBADUGLY 


NFfWORKWORUl 

12  News  Analysis  Finding  treasure  in  social  networking. 

18  Net  Insider  The  birth  of  an  activist  FCC.  by  scott  bradner 

18  Eye  on  the  Carriers  The  battle  over  voice,  the  war  of  UC.  by  johna  till  Johnson 

26  Gear  Head  The  Sentimeter,  Part  1.  by  mark  gibbs 

26  IT  Best  Practices  Six  things  about  botnets  that 
will  scare  you.  by  linda  musthaler 

28  Clear  Choice  Test  Cisco  IPS  7.0  raises  the  bar. 

30  Clear  Choice  Test  IBM  BladeCenter  H522  delivers. 

32  Clear  Choice  Test  Smart  choice  for  mobile  rollouts. 

38  BackSpin  Cybersecurity:  Curiouser  and  curiouser.  by  mark  gibbs 

38  Net  Buzz  Unreliable  is  a  tough  reputation  to  shake,  by  Paul  mcnamara 


Ethernet  services  thrive  despite  recession 

A  gloomy  economy  hasn’t  stopped  the  growth 
of  the  Ethernet  services  industry,  as  a  new 
study  from  Infonetics  Research  finds  that 
global  revenues  grew  sequentially  by  36%  in 
2008.  Overall,  the  study  found  that  Ethernet 
service  revenues  totaled  $16.9  billion  last 
year  and  Infonetics  says  it  expects  revenue  to 
double  to  $33  billion  by  2013.  In  addition  to 
strong  Ethernet  service  growth  last  year,  the 
study  also  found  that  global  Layer  2  and  Layer 
3  IP  MPLS  VPN  service  revenue  increased  by 
16%  in  2008. 


Not  so  fast  on  PC  acceleration  standard 

A  standards  group  says  it  has 
delayed  the  release  of  \ 
a  new  bus  specification  "s 
that  could  help  PCs 
run  faster  by  speeding 
up  data  transfer  rates.  The  PCI- 
Special  Interest  Group  earlier  stated  that  the 
PCIe  3.0  specifications  would  be  released  in 

2009,  with  products  based  on  the  specifica¬ 
tion  appearing  in  2010.  The  base  specification 
will  now  be  released  in  the  second  quarter  of 

2010,  and  products  could  come  out  one  year 
after  that,  said  Al  Yanes,  president  and  chair¬ 
man  of  PCI-SIG. 


CONTACT:  Network  World,  492  Old  Connecticut  Path,  Framingham,  MA  01701-9002;  Phone:  (508) 
766-5301;  E-mail:  nwnews@nww.com;  REPRINTS:  (717)  399-1900;  SUBSCRIPTIONS:  Phone  877- 
701-2228;  E-mail:  nww@omeda.com;  URL:  www.subschbenww.com 


The  hacker’s  version  of 
“What  goes  around...” 

Kevin  Mitnick,  the  ex-hacker  turned  security 
consultant,  is  such  a  high-profile  target  him¬ 
self  that  the  Web-hosting  firm  he  was  using 
finally  told  him  it  wouldn’t  host  Web  pages  for 
him  anymore.  “They  kicked  me  off,”  Mitnick 
says,  noting  he  doesn’t  begrudge  Hostedhere. 
net,  which  he  used  for  five  years.  But  after  a 
number  of  break-ins  that  targeted  the  former 
hacker,  “they  decided  it  wasn’t  cost-effective 
to  keep  me  around,”  Mitnick  says,  adding, 

“I’m  a  target,”  mostly  for  those  who  want  to 
play  “king  of  the  hill"  by  hacking  someone 
once  known  as  a  notorious  hacker.  But  Mitnick 
hasn’t  been  left  Webless,  as  another  hoster 
has  stepped  in  to  offer  Mitnick  a  refuge  for 

the  basic  advertising  he 
does  online  for  his 
consultancy. 


Correction 

In  the  recent  Clear  Choice  Test  of  data  loss  prevention  products,  two  facts  about 

Palisade’s  Packetsure  product  were  misrepresented.  Contrary  to  the  assertion  that  Pack- 
etsure  “seems  to  have  a  phone  home  functionality  enabled  right  out  of  the  box,"  this  is  a 
user-enabled  VPN  function  that  can  be  useful  when  calling  tech  support  or  even  with  initial 
setup.  And  Packetsure  can  scan  and  hash  the  usual  range  of  files  that  most  of  the  others 
support,  not  just  flat  files. 


STORAGE  COMPANIES  TO  WATCH 

Storage  start-ups 
rethink  data  access 


Memory  virtualization 
solid-state  flash  driv 
cloud  computing. 
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PEERSAY 


Dumping  IE6  could 
be  a  hard  sell 

Re:  ‘Kill  IE6’  campaign  gains  force;  30M  Web 
users  get  switch  pitch  (http://tinyurl.com/ 
m4ak5g): 

There  are  a  lot  of  corporate  IT  folks  who  are 
constrained  by  anything  from  application  func¬ 
tionality  to  investment  in  securing  their  systems 
from  browser-based  attacks. 

They’re  not  going  to  rush  into  IE-X  because 
cool  site  developers  find  that  it  takes  additional 
work  to  code  for  IE-whatever.  The  IT  staff  find 
it  hard  work  to  get  predictable  and  secure 
results  from  anything  involving  Microsoft  and/ 
or  the  Web.  They  like  it  when  the  environment 
remains  stable  for.a  few  years. 

At  home,  I  can  (and  do)  pick  something  else. 
With  thousands  of  desktops  and  hundreds  of 
applications  here,  it’s  a  different  story. 

I  agree:  deal  with  the  environment  you  chose. 
If  you  don’t  want  to  support  IE6  you  can  choose 
to  ignore  the  people  working  from  a  constrained 
environment.  We  can  take  our  business  some¬ 
place  else.  It’s  a  free  market. 

GJL 

Two  views  of  Palm  vs.  iTunes 

Re:  Palm  files  complaint  with  USB  board  over 
iTunes  connectivity,  and  risks  alienating 
Pre  users  in  the  process  (http://tinyurl.com/ 
me7ge4): 

This  is  silly.  A  software  vendor  is  free  to  write 
software  that  works  with  someone’s  hardware; 
why  shouldn’t  a  hardware  vendor  be  free  to 
design  hardware  that  works  with  someone’s 
software? 

Apple  is  complaining  because  they  designed 
iTunes  to  work  better  with  iPods  than  with  any¬ 
one  else’s  hardware,  and  so  now  someone  has 
made  hardware  that  behaves  just  like  an  iPod. 
That’s  hardly  a  surprise. 

Anon 

There  is  no  reason  to  reproduce  a  piece  of  soft¬ 
ware  that  the  consumer  likes.  As  a  hardware 
manufacturer  they  are  much  better  off  leverag¬ 
ing  the  positive  public  opinion  of  the  software 
by  making  their  hardware  compatible  with  that 
software. 


The  bone-headed  path  is  trying  to  recreate 
what  already  exists  and  works  adequately. 

zunguri 

Braindumps: 

Cheating  yourself 

Re:  Why  is  passing  CCNA  so  difficult?  (http:// 
tinyurl.com/m7u4sz): 

I  passed  the  first  two  MCPs  in  my  MCSA 
using  braindumps  before  I  realized  I  was  cheat¬ 
ing  myself  and  setting  myself  up  for  a  fall.  Any¬ 
one  who  relies  on  braindumps  without  learning 
the  technology  will  find  themselves  out  of  a  job 
pretty  quick  and  rightly  so. 

The  reason  I  and  many  others  value  Cisco 
certs  so  much  is  that  hands-on  experience  is 
essential  for  success.  I  found  that  a  combina¬ 
tion  of  study  guides,  videos,  sims,  emulators  (if 
you  have  access  to  IOS  images)  and  rack  time  (if 
you  have  hardware  access  or  can  rent  it)  served 
me  very  well.  This  is  borne  out  by  the  fact  that 
when  I  took  the  CCNA  exam  I  met  a  tech  support 
analyst  that  when  asked  what  kit  he  had  worked 
on,  bragged  about  the  fact  he  had  read  the  book 
and  test  king  docs  and  was  confident  he  would 
pass  as  working  on  the  kit  wasn’t  necessary.  He 
scored  640, 1  scored  961. 

My  case  rests. 

Future  CCIE  SP 

Don’t  put  all  eggs  in 
one  ISP  basket 

Re:  After  links  to  cybercrime,  Latvian  ISP  is  cut 
off  (http://tinyurl.com/kjg994): 

If  you  really  want  to  do  evil,  put  your  valu¬ 
able  assets  anywhere,  but  access  them  through 
secure  tunnels  from  disposable  owned  comput¬ 
ers  worldwide. 

Yes,  there  are  things  that  require  relatively 
‘fixed”  addresses  but  you  can  distribute  those 
fixed  addresses  covertly  in  coded/obscured 
form  through  things  like  USENET  and  blog 
posts  or  even  fake  Craigslist  ads. 

Putting  a  lot  of  your  eggs  in  one  basket  is  sim¬ 
ply  asking  for  trouble. 

Knowingly  holding  a  lot  of  rotten  eggs  like 
‘bulletproof”  ISPs  do  is  a  sure  way  to  be  shunned 
by  responsible  users. 

Anon 
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One-Day  IT  Event  Coming  to  a  City  Near  You! 


81  10-IT  tracks;  Vendor  Expo;  Peer  Case-Studies 
H  Feature  sessions  include:  Security; 

WAN  Services;  Network  Management; 
Virtualization;  Data  Centers;  SaaS;  Green  IT; 
UC;  VoIP;  Mobility;  Application  Delivery 


■  10  cities  in  2009  including  Seattle, 
Philadelphia  and  Dallas 

■  Register  and  qualify  to  attend  free! 

www.nwdocfinder.com/9721 


Economy,  industry 


be  tempting,  but  XP  to  drive  iriffafo" 


consolidation  take 
shine  off  Interop 
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ALTERNATIVE  THINKING  ABOUT  SERVER  ECONOMICS: 


rform  like  a  superstar, 
ve  like  an  accountant 


.  IHB 

Now  more  than  ever,  you  need  your  money  to  work  harder.  With  the  new  generation 

of  HP  ProLiant  G6  Servers  with  Intel®  Xeon®  processor  5500  series  you  dramatically 
improve  energy  efficiency,  flexibility  and  performance.  And  more  reliability  in  each 
system  means  you  can  reduce  business  risk  as  you  increase  your  productivity. 

Decrease  your  IT  support  costs  to  an  absolute  minimum.  HP  Insight  Control  Suite  (ICE) 
will  help  you  to  reduce  operational  expenses  by  up  to  $48,380  per  100  users* 

For  total  peace  of  mind,  HP  Care  Pack  Services  deliver  industry  leading  automated 
24X7  system  monitoring,  diagnosis  and  fault  notification  to  protect  your  investment 

Making  you  and  your  business  shine. 

Technology  for  better  business  outcomes. 


HP  ProLiant  DL360  G6  Server 


HP  ProLiant  BL460c  G6  Server  Blade  HP  BladeSystem  c3000  Enclosure 


Special  0%  financing  for  up  to  36  months  also  available) 
To  learn  more,  call  1-866-625-081 2  or  visit  hp.com/go/G6superstar9 
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Interviews,  the  Coolest  Tools  and  More 


IDG  NEWS  WIRE 

Reviving  dead 
gadgets 

Eneloop  uses  the  sun’s  rays 
to  rescue  gadgets  from  what 
would  be  the  trash  heap 
through  the  use  of  solar 
energy. 

http://tinyurl.com/ma455v 


IDG  NEWS  WIRE 

Hacking  the 
Defcon  badge 

The  annual  hacker’s  conven¬ 
tion  set  up  a  badge  that  was 
a  challenge  to  its  attendees 
to  break  into.  It  includes  a 
microprocessor. 
http://tinyurt.com/n7cojo 


IDG  NEWS  WIRE 

Leafing  gas  behind 

Nissan  has  unveiled  its  all¬ 
electric  car  called  the  Leaf. 

It  can  go  up  to  90  mph,  and 
would  need  to  be  recharged 
for  hours  through  a  house¬ 
hold  hookup. 

http://tinyurl.com/p9jstv 
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Legal  considerations 
affect  cloud  decisions 


BLOGOSPHERE 

■  is  your  resume  being  sold  by  recruiters  to 
other  recruiters  or  companies?  Blogger  Larry 
Chaffin  was  given  a  tip  about  the  problem  of 
recruiters  posting  fake  jobs;  this  was  just  to 
get  a  1,000  or  more  resumes  to  sell.  He  says 
there  is  a  nice  business  going  on  now  in  this 
area.  To  see  what  would  happen  he  made 

up  three  resumes  of  fake  people.  The  first 
was  a  CIO  with  20  years  of  experience  in  big 
companies  and  a  list  of  published  articles. 

The  next  was  a  three-time  CCIE  who  has  been 
doing  networking  for  15  years  and  had  project 
management  experience.  The  last  was  an 
entry-level  candidate  with  a  few  certifications 
and  administrations  jobs.  He  posted  for  jobs 
that  the  resumes  would  fit  and  some  that  the 
resumes  were  overqualified  for.  He  looked  at 
the  positions  that  said  remote  position/work 
from  home  office  with  a  national  telecommu¬ 
nication  company  or  fortune  100  companies. 
Also  he  applied  for  architect,  engineer  and 
executive  jobs  as  well.  He  applied  for  around 
70  jobs.  Being  just  right  or  overqualified  you 
would  think  we  would  get  a  call,  but  no,  we 
got  e-mails  saying  sorry  but  you  did  not  meet 
the  qualification  of  the  position.  Within  three 
days  we  started  to  get  e-mails  and  calls  to  our 
temp  cell  phone  from  people  we  did  not  know 
or  jobs  we  applied  for  while  doing  this  project. 
They  said  they  were  forwarded  our  resume 
and  had  a  low-level  position  for  a  three-time 
CCIE.  We  turned  it  down  but  after  the  first  call 
we  started  to  get  a  lot  of  calls  and  e-mail  from 
India,  China,  Canada  and  other  countries.  Our 
resume  was  sold  to  these  recruiters  all  over 
the  world,  http://tinyurl.com/ngvwv8 

■  Porting  apps  to  mobile  devices:  Pandemic 
business  continuity  or  scariest  security  risk 
ever?!  Blogger  Ryan  Trost  says  the  porting  of 
internal  applications  to  mobile  devices  has 
gained  increasing  support  from  business  con¬ 
tinuity  committees  and  executives,  primarily 
to  maintain  work  flow  (i.e.  revenue  streams) 
during  a  disaster  recovery  fiasco  that  would 
keep  employees  from  traveling  into  work.  Up 
until  this  year  disaster  recovery  scenarios 
keeping  employees  at  home  were  mostly 
hypothetical  exercises  required  by  contractual, 
regulatory  or  audit  requirements.  But  when 
the  highly  contagious  outbreak  of  Swine  Flu 
(A/H1N1)  spread  throughout  the  globe,  it  gave 
disaster  recovery  committees  the  leverage 

it  needed  to  transform  internal  apps  onto 
highly  mobile  devices.  At  the  surface,  this 
sounds  like  a  step  in  the  right  direction.  But 
it’s  a  really  bad  idea.  Unless  you’re  a  techie 
who  prides  himself  on  using  ridiculously  hard 
passwords,  the  typical  user  will  be  protecting 
all  those  corporate  secrets  using  the  password 
1-2-3-4.  http://tinyurl.com/l4geca 


Legal  considerations  are  an  important  part 
of  cloud  security,  especially  when  it  comes  to 
how  government  agencies  can  demand  data 
stored  in  cloud  providers’  networks.  The 
protections  from  search  and  seizure  that  data 
has  when  it  is  held  directly  by  its  owners  is  dif¬ 
ferent  from  the  protections  it  has  if  the  data  is 
stored  in  the  cloud,  according  to  presentations 
at  last  week’s  Black  Hat  security  conference. 
Data  stored  on  PCs  in  their  owners’  homes 
can’t  be  demanded  without  a  subpoena  being 
served  to  the  owners,  they  said.  The  same  data 
stored  in  a  service  provider’s  network  can  be 
demanded  from  the  provider  without  going 
through  the  owner,  the  Black  Hat  speak¬ 
ers  said.  So  the  data,  which  could  remain 
available  to  its  owner,  might  also  be  copied  to 
law  enforcement  authorities,  but  the  owner 
wouldn’t  know  it.  Service  providers  might  tell 
the  owners,  but  wouldn’t  have  to,  they  said, 
and  they  might  be  prevented  from  telling. 
http://tinyurl.com/mao759 

Security  strategies:  My  case  study  involved 
me  personally  when  I  was  a  law  enforcement 
officer.  The  case  began  when  an  80-year-old 
woman  reported  to  a  law  enforcement  officer 
(LEO)  that  an  unknown  person  had  taken 


more  than  $100,000  from  her  bank  account. 
The  victim  stated  that  she  had  the  money  in 
her  account  one  day,  and  the  following  day  it 
was  missing.  She  had  not  reported  the  miss¬ 
ing  money  to  the  bank,  just  to  the  LEO  who 
went  to  the  bank  to  investigate  the  case  and 
was  immediately  met  with  resistance.  The 
manager  came  in  and  stated  that  he  would  just 
refund  the  money  and  that  an  investigation 
would  not  be  necessary.  He  stated  that  the 
bank  could  not  stand  the  negative  impact  that 
the  case  would  have  on  the  bank’s  reputa¬ 
tion.  The  LEO  demanded  that  the  manager  of 
the  bank  cooperate  in  the  investigation  and 
told  the  manager  that  the  person  responsible 
would  be  held  accountable  for  the  crimes.  As 
it  turned  out,  the  teller  who  had  her  worksta¬ 
tion  next  to  the  controls  for  the  entire  camera 
system  was  the  culprit.  She  had  a  friend  who 
had  worked  for  the  victim  and  who  had  stolen 
checks  from  the  woman.  When  this  friend 
arrived  at  the  bank,  the  teller  turned  off  the 
cameras  and  cashed  several  checks  as  if  the 
victim  had  come  in  herself,  even  writing  the 
victim’s  driver’s  license  number  onto  the 
checks.  The  two  women  who  were  responsible 
were  both  arrested. 
http://tinyurl.com/nmcnja 
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Their  computer. 
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XML  flaw  threatens  apps 

Vulnerabilities  discovered  in  XML  libraries  from  Python  Software 
Foundation,  Sun  Microsystems  and  Apache  Software  Foundation 
could  allow  denial-of-service  attacks  on  applications  built  with  them, 
according  to  security  test  toolmaker  Codenomicon  and  the  Finnish 
Computer  Emergency  Response  Team.  “The  vulnerabilities  can  be 
exploited  by  enticing  a  user  to  open  a  specially  modified  file,  or  by  submitting 
it  to  a  server  that  handles  XML  content,”  the  CERT-FI  advisory  said.  Neil  Mac¬ 
Donald,  a  vice  president  at  Gartner,  warned  companies  not  to  ignore  the  danger 
of  attacks  that  exploit  the  library  flaws.  “Hackers  are  moving  up  the  stack  to  the 
application  level,”  MacDonald  said.  XML-based  attacks  can  be  expected  to  be 
“the  next  big  thing  for  hackers,”  MacDonald  said,  http://tinyurl.com/m887t3 


Cisco  posts  Q4  decline  but  sees  promise. 

Cisco’s  revenue  fell  18%  in  its  fiscal  fourth  quar¬ 
ter  ended  July  25,  hitting  $8.5  billion,  while 
its  net  income  dropped  to  $1.1  billion,  or  19 
cents  per  share.  Revenue  for  all  of  Cisco’s  main 
businesses  was  down  significantly  from  a  year 
earlier,  with  routing  hurting  most  at  27%  lower. 
But  CEO  John  Chambers  said  the  company  saw 
positive  signs  during  the  quarter  that  could 
signal  a  rebound  in  the  world  economy  and 
the  company’s  business.  “We  believe  there  is  a 
good  chance  we  will  look  back  and  see  that  the 
tipping  point  occurred  in  our  business  in  Q4,” 
Chambers  said.  Cisco  is  ahead  of  its  goal  to  cut 
$1.5  billion  in  annual  expenses,  and  it  plans  to 
get  more  aggressive  on  the  acquisition  front 
now  that  it  has  reorganized  its  management 
structure  to  better  support  the  30  “market 
adjacencies”  it  is  trying  to  tackle.  Chambers 
said,  http://tinyurl.com/mhtb91 

Rollercoasters  go  high-tech.  Behind  the 
vertical  dives  and  loop  de  loops  of  today’s 
rollercoasters  are  cutting-edge  computer 
systems  that  thrill  riders  and  keep  them  safe. 
The  newest  rides  use  sensors,  Ethernet  control 
systems,  wired  and  wireless  networks  as  well 
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as  digital  audio  and  video.  The  newly  opened 
Hollywood  Rip  Ride  Rockit  (pictured  below) 
at  Universal  Orlando  Resort,  for  example,  fea¬ 
tures  an  onboard  audio  system  that  lets  riders 
choose  the  songs  they  want  to  hear  during  the 
coaster  ride.  On  Manta,  the  newest  thrill  at  Sea 
World  Orlando,  sensors  along  a  3,359-foot  track 
and  on  the  trains  communicate  with  Program¬ 
mable  Logic  Controllers  while  computerized 
special  effects  simulate  the  coaster  hitting 
water.  Head  online  for  more  details  on  these 
and  other  attractions  that  made  our  list  of 
the  nation’s  top  tech  rollercoasters  and  rides. 
http://tinyurl.com/mzlsqq 

IBM  gets  $16  million  for  brain-on-a-chip 
technology.  The  quest  to  mimic  the  best  parts 
of  human  brain  function  on  a  highly  intelligent 
computer  is  heating  up.  IBM  last  week  received 
$16.1  million  to  kick  up  its  part  of  a  Defense 
Advanced  Research  Projects  Agency  research 
program  aimed  at  putting  brain-like  senses 
into  hardware  and  software.  IBM  is  part  of  a 
program  known  as  Systems  of  Neuromorphic 
Adaptive  Plastic  Scalable  Electronics,  which 
includes  researchers  from  HRL  Laboratories 
and  HP.  According  to  DARPA,  the  SyNAPSE 
program  will  create  use¬ 
ful,  intelligent  machines 
“capable  of  analyzing  vast 
amounts  of  data  from 
many  sources  in  the 
blink  of  an  eye,  letting 
the  military  or  civilian 
businesses  make  rapid 
decisions  in  time  to  have 
a  significant  impact 
on  a  given  problem  or 
situation  ’’http://tinyurl. 
com/mde77e 


The  manta  roller¬ 
coaster  in  Orlando  has 
computerized  special 
effects  to  simulate  the 
coaster  hitting  water. 


Windows  president  downplays  Win  7  bug. 

Microsoft’s  Windows  Division  President 
Steven  Sinofsky  last  week  tried  to  temper 
concerns  that  Windows  7  RTM  has  a  critical 
flaw  that  can  shut  down  the  operating  system 
by  running  a  simple  command.  “Of  course 
[we]  always  want  to  investigate  each  and  every 
report  of  any  unexpected  behavior,”  said  Sinof¬ 
sky,  who  took  the  unusual  step  of  responding 
via  the  comments  section  of  an  industry  blog 
that  posted  a  recipe  to  execute  the  crash  and 
included  a  picture  of  the  results.  But  Sinofsky, 
who  is  leading  Windows  7  development,  said 
Microsoft  has  not  reproduced  the  reported 
crash,  which  is  triggered  by  the  Windows 
“CHKDSK  /r”  command.  “We  are  certainly 
going  to  continue  to  look  for,  monitor,  and 
address  issues  as  they  arise  if  required.  So 
far  this  is  not  one  of  those  issues,”  he  wrote. 
Reports  of  the  bug  came  a  day  before  Microsoft 
made  Windows  7  available  to  MSDN  subscrib¬ 
ers.  General  availability  is  slated  for  Oct.  22. 
http://tinyurl.com/lmbeav 

Google  to  buy  On2  Technologies.  Google  has 
reached  an  agreement  to  buy  On2  Technologies 
in  a  stock  deal  worth  about  $106.5  million.  On2 
offers  video  compression  technologies  used 
in  Adobe  Flash  Player,  VoIP,  mobile  video  and 
embedded  devices.  The  deal  shows  Google’s 
interest  in  pushing  forward  video  technologies 
on  a  variety  of  mobile  devices  and  through 
set-top  boxes,  says  Gartner  analyst  Andrew 
Frank.  The  acquisition  gives  Google  access  to 
video  compression  software  without  paying 
licensing  fees  for  MPEG’s  H.264  standard  and 
will  allow  Google  to  move  forward  with  video 
projects  without  any  “bottlenecks,”  Frank  said. 
“Video  in  the  living  room  and  video  on  the  go 
are  going  to  be  major  thrusts  for  Google  in  the 
future.’  http://tinyurl.com/nw93km 

High-end  clustering  tool  is  reworked  for  the 
enterprise.  A  company  that  develops  workload 
management  tools  for  high-performance  clus¬ 
ters  is  bringing  its  products  to  the  commercial 
data  center,  where  it  says  it  can  help  companies 
schedule  jobs  and  allocate  computing  resources 
more  efficiently.  Cluster  Resources  —  which 
is  changing  its  name  to  Adaptive  Computing 
—makes  the  Moab  software  tools  widely  used 
in  high-performance  clustering  environments, 
including  12  of  the  world’s  20  biggest  super¬ 
computers.  The  company’s  new  product,  the 
Moab  Adaptive  Computing  Suite,  is  designed 
to  manage  transactional  applications  where 
demand  fluctuates  throughout  the  day.  Used  in 
conjunction  with  virtualization  software,  the 
software  can  boost  server  utilization  rates  by  an 
extra  20%  to  40%,  depending  on  the  application, 
the  company  says,  http://tinyurl.com/nk22s2 
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CA  Wily  Application  Performance  Management  is  designed  to 
improve  the  performance  and  availability  of  mission  critical  and 
revenue-generating  applications.  So  you  can  quickly  spot  and 
correct  online  production  application  incidents  before  they 
become  customer  problems  — especially  in  complex  and  high 
volume  transaction  environments.  That's  the  power  of  lean. 
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Finding  treasure  in  social  networking 


BY  JOHN  FONTANA 


It  may  just  be  that  the  Gen  Y  kids  fueling  the 
Web  2.0  and  social  networking  craze  know 
exactly  what  they  are  doing. 

The  “what”  is  creating  an  interconnected 
Web  of  relationships  that  fosters  the  sharing 
of  ideas,  uncovers  expertise,  and  brings  data  out 
of  hiding  to  solve  problems  or  fuel  projects. 

Corporate  users  are  taking  notice,  NASA  and 
Booz  Allen  Hamilton  among  them,  because 
those  are  just  the  results  companies  coveted  but 
couldn’t  get  a  decade  ago  when  knowledge  man¬ 
agement  was  a  buzz  word  and  a  project  failure 
inside  many  organizations. 

“Explore  these  [social  networking]  technolo¬ 
gies  because  the  Gen  Y  kids  are  probably  right,” 
says  Chris  Howard,  vice  president  and  research 
directory  for  the  Burton  Group.  If  history  is  any 
indication,  social  networking  could  become  the 
next  instant  messaging,  which 
grew  from  a  teen-girl  chat  ser¬ 
vice  into  a  core  element  of  cor¬ 
porate  unified  communication 
systems. 

“You  have  to  focus  on  the  busi¬ 
ness  value  and  de-emphasize 
the  cool  factor,”  Howard  said  at 
the  recent  Burton  Group  Cata¬ 
lyst  Conference. 

That  is  what  NASA  is  doing 
both  externally  —with  Web¬ 
facing  portals,  virtual  worlds, 

Twitter,  Facebook  and  Linke- 
dln  —  and  internally  with  blogs, 
wikis,  workspaces,  and  social 
networks  interconnected  with 
content,  document  and  records 
management  systems. 

“We  want  to  be  where  every¬ 
body  else  is,  we  want  to  be  part 
of  the  party,  too,”  said  Jeanne 
Holm,  chief  knowledge  archi¬ 
tect  at  the  NASA/Jet  Propulsion 
Laboratory  in  Pasadena,  Calif.  “Part  of  what  we 
are  looking  at  is  what  are  the  benefits  internally” 
with  social  networking. 

Those  benefits  now  include  accelerated  peer- 
to-peer  communication  and  problem  solving, 
collective  intelligence  built  by  capturing  knowl¬ 
edge  from  individual  workers  for  re-use  by  oth¬ 
ers,  and  providing  context  to  communication  to 
help  with  decision  making. 

Holm  wants  to  go  from  just  one  person  work¬ 
ing  on  a  problem  to  perhaps  thousands. 

“The  way  people  are  sharing  information  now 
is  through  the  social  connections  they  are  mak¬ 
ing  and  there  is  a  lot  of  tacit  knowledge  there.” 

NASA’s  internal  social  network  started  out 
with  users  talking  about  the  network  itself,  but 
the  chatter  soon  turned  to  questions  scientists 


and  others  were  seeking  to  answer. 

They  headed  to  the  social  network  and  Holm 
said  the  result  was  that  93%  of  the  answers  came 
from  people  who  were  in  a  different  NASA  cen¬ 
ter  then  the  questioners,  which  was  proof  that 
the  network  was  breaking  down  geographic 
barriers  and  unlocking  potential. 

Holm’s  knowledge  management  team  is  now 
working  on  a  project  called  Spacebook  that  com¬ 
bines  profiling  and  networking  together  with 
the  content  used  to  help  make  decisions.  It  also 
includes  a  records  management  component. 

“It  was  difficult  to  share  information  from  one 
part  of  NASA  to  another,  so  we  looked  at  fixing 
those  problems,”  Holm  said.  Then  they  worked 
on  integrating  knowledge  distributed  through¬ 
out  the  space  agency. 

Holm  said  social  networking  was  judged  as 
something  beneficial  and  providing  a  return  on 
investment  for  what  NASA  was  trying  to  do. 


She  said  when  people  connect  in  an  open  way 
it  can  be  captured  and  shared  while  still  hav¬ 
ing  private  spaces  for  conversation.  “We  want 
to  find  people’s  expertise  and  we  want  to  cap¬ 
ture  that.  In  the  future,  we  want  to  model  that 
knowledge.” 

The  knowledge  will  be  used  to  support  ongo¬ 
ing  and  future  projects  such  as  robotic  outposts 
on  Mars,  interstellar  missions  and  permanent 
space  colonies. 

Booz  Allen  Hamilton  is  another  convert  to 
the  powers  of  social  networking.  The  compa¬ 
ny’s  internal  social  network,  Hello.bah.com,  is 
providing  easy  access  to  key  data  and  fueling 
employee  collaboration  that  has  broken  silos 
formed  among  23,000  employees. 

Launched  10  months  ago,  Hello.bah.com  has 


gone  from  just  over  10,000  logins  per  month  to 
more  than  60,000  today  and  from  4,000  users 
per  month  to  more  than  10,000. 

“We  were  blown  away  by  the  uptake,”  said 
Walton  Smith,  senior  associate  at  Booz  Allen 
Hamilton  and  leader  of  the  project.  “We’ve  dis¬ 
covered  that  the  enterprise  2.0  approach  is  a 
methodology  and  not  a  technology  implemen¬ 
tation  plan.  We  had  to  be  agile.” 

Hello  was  up  in  less  than  six  months  with 
wikis,  blogs,  profiles,  single  sign-on  and  SSL 
VPN  access  all  built  with  open  source  tools  and 
some  commercial  software. 

“We  had  silos  of  information  with  the  same 
people  working  on  the  same  stuff.  We  needed  to 
unlock  that  tacit  knowledge,”  he  said. 

They  did  by  focusing  on  end  users  and  giv¬ 
ing  them  easy-to-use  intuitive  tools  to  add 
information. 

“They  used  it  not  because  it  was  a  benefit  to  the 
firm  but  because  it  improved 
their  work.  And  then  we  could 
aggregate  that  content,”  Smith 
said. 

The  common  element  was  a 
profile  and  that  became  a  foun¬ 
dational  piece  for  collecting 
data  and  making  connections. 

Key  to  success  was  targeting 
workers  with  five  to  15  years  of 
experience.  Those  workers  had 
the  knowledge  that  made  the 
value  of  the  system  skyrocket 
out  of  the  gate. 

“We  knew  we  had  won  when 
HR  started  to  build  their 
on-boarding  class  [for  new 
employees]  around  Hello,” 
Smith  said.  This  year  5,000 
new  employees  will  begin  their 
employment  via  Hello. 

Smith  said  a  change  manage¬ 
ment  strategy  was  vital  to  learn 
to  work  together  differently 
and  that  education  centered  not  on  the  tools  but 
the  concepts. 

The  company  defined  its  internal  social  strat¬ 
egies,  aggregated  data  from  existing  sources, 
listened  to  users,  and  kept  departments  such  as 
legal  and  HR  clued  in. 

“The  Feedback  Box  is  the  most  critical  thing  we 
have,”  Smith  said.  Users  whose  ideas  are  incor¬ 
porated  into  Hello  are  credited  on  the  site. 

Smith  said  adoption  was  aided  by  building 
tactical  strategies,  tapping  into  existing  com¬ 
munities  and  managing  new  communities  vis¬ 
ibly  and  openly,  and  creating  examples  of  how 
work  can  be  done. 

“We  are  in  the  process  of  doing  an  ROI  study, 
but  the  good  news  so  far  is  that  the  cost  is  low,” 
Smith  said.  H 


0  0  0  Second  life 


As  part  of  its  social  networking  efforts,  NASA,  in  partnership  with 
NOAA,  streams  real-time  weather  data  via  Google  Earth  into  the 
Jet  Propulsion  Laboratory’s  Explorer  Island  in  Second  Life. 
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Modular  Switches 


Cisco 

HP 

3Com 

Switch  name 

Nexus  7000 

NA 

H3C  S12500 

Total  capacity 

15Tbps 

NA 

13.3Tbps 

Ports 

512  lOGig 

NA 

512  lOGig 

Price 

$75,000 

$60,000 

Switch  name 

Catalyst  6500 

ProCurve  8212zl 

H3C  S7500E/3Com 
S7900E 

Total  capacity 

1.44Tbps 

691.2Gbps 

1.5Tbps 

Ports 

260  lOGig 

48  lOGig 

84  lOGig 

Price 

$24,000 

$24,000 

$16,000 

Switch  name 

Catalyst  4500, 
4500-E 

ProCurve  5400zl 

H3C  S7500E/3Com 
S7900E 

Total  capacity 

320Gbps 

691Gbps 

1.5Tbps 

Ports 

34  lOGig 

48  lOGig 

84  lOGig 

Price 

$995  to  $18,000 

$2,300  to  $14,000 

$16,000 

For  more  switch  comparison  go  to  http://tinyurl.com/ng9nw6 


■  Switches,  from  page  1 

Ron  Sege,  president  and  CEO  of  3Com,  says 
the  H3C  enterprise  equipment  his  company  is 
bringing  out  of  China  was  built  from  the  ground 
up  in  the  last  four  years  using  the  latest  ASIC 
and  other  technology  advances. 

The  company  is  trying  to  use  its  success  in 
China  to  convince  domestic  buyers  to  give  it 
another  chance  after  it  pulled  out  of  the  North 
American  enterprise  market  twice.  “We  already 
have  a  million  routers  installed  in  China,  half  a 
million  switches,  and  common  management  for 
the  whole  range  of  gear,”  Sege  says. 

China  uses  the  H3C  equipment  to  power 
eight  out  of  12  national  backbones,  including  its 
transportation,  education  and  energy  networks, 
Sege  says.  “We’re  selling  value  in  most  cases  but 
value  based  on  cost  to  operate.  Lower  cost  up 
front,  less  expensive  to  operate  over  time  and 
higher  performance  to  boot.” 

But  will  value  be  enough?  Cisco  has  more  than 
70%  of  the  market  and  says,  no  matter  how  indi¬ 
vidual  boxes  line  up,  its  ace  in  the  hole  is  low  total 
cost  of  ownership,  something  it  achieves  with  its 
cohesive,  overarching  product  architecture. 

To  see  if  the  value  stories  hold  water  we 
started  by  examining  product  cost  and  found 
that  in  some  cases  —  not  all  —  switches  from 
HP  and  3Com  do  cost  considerably  less  than 
comparable  Cisco  offerings,  at  least  on  a  start¬ 
ing  list  price  level.  For  instance,  3Com’s  S7500E 
and  S7900E  modular  multilayer  10G  and 
Gigabit  switches  cost  $8,000  less  than  Cisco’s 
Catalyst  6500. 

But  it  is,  of  course,  hard  to  do  an  apples-to- 
apples  comparison.  Cisco  says  the  Catalyst 
6500  supports  three  times  as  many  10G  Eth¬ 
ernet  ports  than  3Com  does  on  the  7500E  and 
7900E.  But  3Com  claims  the  VSS1440  version 
of  Cisco’s  Catalyst  6500,  which  Cisco  says  takes 
the  system’s  switching  capacity  to  1.44Tbps,  is 
mostly  marketing  rhetoric. 

“Although  claiming  1400  Gbps,  (it)  is  mostly 
a  redundancy  scheme,”  says  Dominic  Wilde, 
3Com’s  senior  director  of  Global  Product  Line 
Marketing  for  Networking  Products.  “It  does 
not  increase  bandwidth  as  only  one  supervisor 
is  active.” 

3Com  also  claims  the  Catalyst  6500,  with 
a  Supervisor  720  engine,  only  delivers  half 
the  throughput  of  the  3Com  7500  and  7900 
switches  for  IPv4  packets. 

Cisco,  meanwhile,  claims  the  3Com  switches 
and  HP’s  high-end  5400  and  8212  systems  line 
up  better  with  the  Catalyst  4500  —  even  though 
3Com  and  HP  aim  their  offerings  squarely  at  the 
6500.  The  4500  E-series  chassis  ranges  in  price 
from  $995  to  $12,495  while  bundled  pricing  for 
the  4500  is  $11,000  to  $18.  Cisco  says  an  entry 
level  4500  costs  $200  per  gigabit  Power  over 
Ethernet  Plus  port. 

“We  primarily  compete  with  them  on  the 
4500,”  says  Rajiv  Ramaswami,  vice  president 
and  general  manager  for  Cisco’s  Data  Center 
Switching  Technology  Group. 

But  value  is  not  based  on  price  alone. 

“There  are  different  ways  to  measure  value,” 


says  Zeus  Kerravala,  an  analyst  at  The  Yankee 
Group.  “One  of  the  big  (aspects)  of  the  value 
chain  for  Cisco  is  the  base  of  Cisco  certified  engi¬ 
neers  out  there.  You  can  actually  pick  up  the 
Yellow  Pages  to  find  them.  The  odds  of  finding 
a  3Com  or  HP  guy  are  long.” 

Rob  Whiteley  of  Forrester  Research  agrees.  “If 
you  have  an  army  of  (Cisco  certified  engineers), 
there’s  going  to  be  a  learning  curve  [if  you  add 
other  suppliers]  and  that  is  the  No.  1  reason 
why  the  ultimate  TCO  is  a  bit  more  of  a  wash. 
The  people  cost  is  an  order  of  magnitude  more 
expensive  than  some  of  those  other  costs.” 

But  HP  says  the  cost  of  a  Cisco  SmartNet 
maintenance  contract  alone  over  five  years  could 
be  more  than  a  new  HP  ProCurve  network. 

“We  have  had  customers  who  basically  said, 
‘I  can  replace  my  entire  network  with  ProCurve 
just  by  the  cost  of  a  Cisco  SmartNet  maintenance 
contract,”  says  Sreeram  Krishnamachari,  HP 
ProCurve  product  marketing  manager. 

HP  and  3Com  may  have  a  better  value  propo¬ 
sition  at  branch  office  sites,  where  a  wiring  closet 
switch  can  be  purchased  for  a  reasonable  price, 
easily  deployed,  and  then  not  updated,  upgraded 
or  even  thought  about  for  the  next  five  years, 
Kerravala  says. 

Other  aspects  —  such  as  power  consump¬ 
tion,  total  cost  of  ownership  (TCO),  operational 
expense  and  so  on  —  also  play  key  roles  in  deter¬ 
mining  the  overall  value  of  a  network  deploy¬ 
ment.  Another  thing  to  examine  are  the  switch 
features  themselves;  how  much  functionality 
do  you  get  when  you  purchase  a  switch?  Do  you 
have  to  purchase  an  additional  software  license 
to  get  the  functionality  you  need?  Or  are  you 
paying  for  capabilities  that  you  don’t  need? 

“Value  is  in  the  eye  of  the  beholder,”  Kerravala 


says.  “The  fact  that  Cisco  still  carries  the  lion’s 
share  of  the  market  means  to  me  there’s  more 
value  placed  on  the  things  that  Cisco  offers  than 
what  HP  and  3Com  offer.  But  HP’s  share  has 
grown  a  lot  [of  late].  Their  message  around  TCO 
and  things  like  that  have  resonated.” 

Kerravala  expects  HP  to  continue  to  take  share 
from  Cisco  and  for  Cisco  to  respond  by  dropping 
prices. 

“This  may  be  a  time  for  customers  to  really 
benefit  based  on  the  fact  that  these  two  compa¬ 
nies  are  going  to  go  toe-to-toe,”  Kerravala  says. 
“Cisco’s  going  to  try  and  keep  share,  HP’s  going 
to  try  and  take  it.  The  big  winner  here  is  going  to 
be  the  customer.” 

HP  still  doesn’t  have  a  data  center  core  switch 
to  take  on  Cisco’s  Nexus  7000.  But  3Com  says  it 
does  —  the  S  12500,  which  debuted  last  spring 
at  Interop. 

Cisco  quotes  a  15Tbps  capacity  for  the  Nexus 
7000  but  3Com  says  Nexus  won’t  hit  that  mark 
for  another  12  months.  Wilde  says  the  S  12500 
will  achieve  13.3Tbps  by  then. 

But  Cisco  counters  that  the  S 12500  is  just  not 
in  the  same  league  as  the  Nexus  7000.  The  Cisco 
switch  was  built  not  only  for  Ethernet  switch¬ 
ing,  but  for  converging  storage  protocols  such  as 
Fibre  Channel,  and  optimized  for  “enabling  and 
driving”  virtualization,  Ramaswami  says. 

“It  is  specifically  for  data  center  convergence, 
which  we  believe  our  competition  does  not 
have,”  Ramaswami  says. 

Cisco  says  the  real  value  is  in  the  overall  sys¬ 
tem  and  architectural  role  of  its  switches. 

"There  are  multiyear  investments”  custom¬ 
ers  are  making  in  Cisco  switches,  Ramaswami 
says.  “You’re  comparing  platforms  against  point 
products.”  ■ 


14  AUGUST  3  - 10, 2009  www.networkworld.com 


Download  FREE  White  Paper  #137: 
"Energy  Efficient  Cooling  for  Data 
Centers:  A  Close-Coupled  Row 
Solution" 


Name: Title: 


Comoanv: 

Address: 

Address  2: 

Citv/Town: 

State: 

Zip  Code: 

Country: 

Phone: 

Fax: 

e-mail: 

j  |  Yes!  Send  me  more  information  via  e-mail  and  sign  me  up  for  APC  Powernews  e-mail  newsletter.  Key  Code:  j776w 


Key  Code 

j776w 


www.apc.com/pmmo 

(888)  289-APCC  x6059 
FAX:  (401)  788-2797 


What  type  of  availability  solution  do  you  need?  □  UPS:  o-l  6kVA  (Single-phase)  □  UPS:  1 0-80kVA  (3-phase  AC) 

□  UPS:  80+  kVA  (3-phase  AC)  □  DC  Power  □  Networking  Enclosures  and  Racks  □  Air  Conditioning 

□  Monitoring  and  Management  □Cables/Wires  □  Line  Conditioning  □  Mobile  Protection  □  Surge  Protection 

□  UPS  Upgrade  □  Don't  Know 

Purchase  time  frame?  □  <1  Month  □  1-3  Months  □  3-1 2  Months  □  >1  Year  □  Don't  Know 

You  are  (check  one)  □  Home/Home  Office  □  Business  (<1000  employees)  □  Large  Corp.  (>1000  employees) 

□  Gov't,  Education,  Public  Org.  □  APC  Sellers  and  Partners 


by  Schneider  Electric 


02009  Schneider  Electric,  All  Rights  Reserved,  Schneider  Electric,  APC,  and  Powernews  are  owned  by  Schneider  Electric,  or  its  affiliated  companies  in  the  U.S.  and  other  countries, 
e-mail:  esupport@apc.com  •  1 32  Fairgrounds  Road,  West  Kingston,  Rl  02892  USA  998-1 862a 


NO  POSTAGE 
NECESSARY 
IF  MAILED 
IN  THE 

UNITED  STATES 


BUSINESS  REPLY  MAIL 

FIRST-CLASS  MAIL  PERMIT  #36  WEST  KINGSTON  Rl 

POSTAGE  WILL  BE  PAID  BY  ADDRESSEE 


ATTENTION  CRC:  j776w 
132  FAIRGROUNDS  RD 
PO  BOX  278 

WEST  KINGSTON  Rl  02892-9920 


III . I. II. .1.1.1...  ,1,11,1,  .1,1 


I.III...I.I..I 


Now,  virtualize,  pack  the  racks 
and  save  energy  without 
fear  of  hot  spots. 


ure 


Put  the  cooling  where  it  saves 
energy  and  handles  hot  spots:  In  Row® 


Today's  data  centers  are  really  heating  up. 

Racks  are  packed  with  more  and  more  equipment,  driving  the  highest-ever  rack  power 
densities.  The  result:  unprecedented  heat  levels,  row  by  row.  Meanwhile,  virtualization 
is  everywhere,  leading  to  more  dynamic  loads  and  shifting  hot  spots.  Tackling  this 
challenge  with  traditional  raised  floors  and  perimeter  cooling  alone  poses  a  real  struggle: 
How  can  you  bring  enough  cooling  exactly  where  it’s  required?  Too  often,  the  result 
is  inefficiency,  worsened  by  soaring  energy  costs.  What’s  the  efficient  and  effective 
solution?  InRow®  cooling  from  APC®  by  Schneider  Electric. 

Variable  speed  fans  target  heat  and  improve  efficiency. 

Rack-mounted  sensors  monitor  the  temperature,  giving  you  real-time  information  on 
where  heat  is  hiding.  As  heat  loads  shift  around  the  room,  unique  variable  speed  fans 
automatically  adjust  to  meet  the  demand.  By  closely  matching  cooling  with  the  heat 
load,  you  use  the  cooling  that’s  required  in  the  right  place  at  the  right  time,  reducing 
waste  by  preventing  hot  and  cold  air  mixing  and  eliminating  hot  spots.  You  improve 
efficiency  and  avoid  overcooling. 

Modular  design  delivers  maximum  flexibility. 

Scalable,  modular  InRow  cooling  units  can  be  easily  deployed  as  the  foundation  of  your 
entire  cooling  architecture  or  in  addition  to  current  perimeter  cooling  for  a  high-density 
zone  within  an  existing  data  center.  With  this  kind  of  hybrid  environment,  there  is  no 
need  to  start  over,  and  installation  is  quick  and  easy. 

So  go  ahead:  Pack  the  racks  without  fear  of  hot  spots  or  inefficiency.  Intelligent,  efficient 
InRow  cooling  handles  high-density  heat  at  the  source. 


APC  offers  the  most  efficient,  comprehensive  line  of  cooling  solutions  for  any 
IT  environment. 
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Room-level 

cooling: 

InRoom 
Chilled  Water, 
InRoom  Direct 
Expansion, 
NetworkAIR'  PA 


Rack-level 

cooling: 

RackAIR 

Removal  Unit  SX, 

RackAIR  Distribution  Unit, 
Rack  Side  Air  Distribution, 
Rack  Fan  Tray 
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DATA  CENTERS  ON  DEMAND 

Achieve  greater 
efficiency  with 
InRow®  cooling. 


1 .  Hot  spot  emerges. 

2.  Row-based  temperature 
probes  send  signal  through 
intelligent  controls. 

3.  Based  on  required  cooling, 
variable  speed  fans  fire  up  or 
level  down. 

4.  With  row-based  cooling,  air 
mixing  and  overcooling  are 
prevented.  Heat  is  handled 
with  the  lowest  energy 
consumption  possible. 
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the  green  grid 
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the  green  grid. 
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■  Certification , from  page  1 
made  during  a  candidate’s  downtime.  Here  we 
highlight  five  ways  IT  pros  can  get  certification- 
level  skills  on  the  cheap. 


1  Split  the  cost  with 
employer 

I  IT  professionals  working  full-time, 
but  faced  with  no  training  budget,  could  argue 
their  case  to  employers  —  and  offer  to  split  the 
cost  in  a  mutually  beneficial  arrangement. 

“Many  companies  today  are  still  having  a  hard 
time  filling  skills  gaps,  and  it  would  cost  more  to 
bring  in  a  new  hire  than  to  train  an  existing  one 
in  the  skills  that  are  lacking,”  Lieberman  says.  “It 
is  not  out  of  the  question  for  IT  pros  to  negotiate 
with  their  employer  for  training  dollars  that  will 
ultimately  help  both  parties.” 

For  some,  specific  certifications  are  required 
for  certain  positions  —  which  would  give  an 
employer  more  reason  to  help  fund  the  train¬ 
ing  effort.  Colt  Mercer,  network  engineer  at 
Citigroup  in  Dallas,  says  Level  1  engineers  are 
expected  to  have  their  Cisco  Certified  Network 
Associate  (CGNA)  accreditation  within  three 
months  of  being  hired.  In  Mercer’s  case,  he  and 
others  are  scheduled  to  get  Cisco  Certified  Inter¬ 
network  Expert  training  by  2010,  but  he  wants 
to  see  that  happen  sooner. 

Gartner  recently  put  out  IT  workforce  data 
that  showed  a  majority  of  CIOs  don’t  plan  to  hire 
new  staff  in  the  coming  months,  but  the  research 
firm  advises  employers  to  invest  in  existing  staff 
to  ensure  a  successful  recovery  when  the  reces¬ 
sion  abates. 

“Employers  need  to  continue  to  invest  in  career 
development  and  human  capital  management 
planning,  even  during  the  recession,  because 
when  things  start  to  return  it  will  be  extremely 
costly  to  try  to  hire  new  staff  with  skills  or  exper¬ 
tise  in  enterprise  architecture  or  SAP,  for  exam¬ 
ple,”  says  Lily  Mok,  vice  president  in  Gartner’s 
CIO  Research  organization. 


M  Techie,  train  thyself 

IT  professionals  can  gain  a  wealth 
■■■  I  of  knowledge  from  self-study  if 
they’re  disciplined  enough  to  devote  the  time 
and  energy  to  online  courses,  books,  videos  and 
Webinars. 

“Self-based  training  kits  allow  you  to  do  it  at 
your  own  pace  and  schedule  the  studying  when 
you  have  time,”  says  Dwayne  Whitmore,  senior 
systems  engineer  in  the  technology  services 
group  for  Carolinas  Healthcare  System  in  Char¬ 
lotte,  N.C. 

Whether  techies  buy  self-study  kits  on  their 
own  or  get  their  employer  to  foot  the  bill,  choos¬ 
ing  to  broaden  skills  during  personal  time  can 
provide  the  flexibility  many  people  need.  For 
instance,  reduced  or  eliminated  travel  budgets 
could  be  seen  as  a  barrier  to  training,  but  online 
or  self-study  can  provide  the  information  IT 
pros  need  without  requiring  them  to  spend  cash 
on  work  trips. 


Which  IT  certifications 
are  hot? 

Security  certifications  factor  heavily 
in  Foote  Partners’  latest  ranking 
of  the  hottest  IT  certifications, 
published  in  July.  The  research  firm’s 
list  is  culled  from  data  including  IT 
budget  trends  and  growth  in  pay  for 
IT  skills  over  the  past  six  months. 


1.  GIAC  Certified  Incident  Handler 


2.  EMC  Proven  Professional 
Technology  Architect  -  Expert 

3.  Citrix  Certified  Integration  Architect 

4.  HP/Master  Accredited 
Systems  Engineer 

5.  Cisco  Certified  Security 
Professional 


6.  Check  Point  Certified 
Master  Architect 


was  unemployed  last  year.  Plus,  now  that  he  has 
secured  a  new  tech  position,  the  lab  gives  him  the 
chance  to  learn  technologies  not  directly  related 
to  his  job  functions,  Hager  says. 

“EBay  is  my  friend.  I  buy  second-hand  equip¬ 
ment,  and  for  a  modest  amount  — •  about  $400  — 
I  have  scraped  together  a  home  lab  that  is  condu¬ 
cive  to  Microsoft  and  Cisco  self-training,”  Hager 
explains.  “You  can  even  get  a  VMware  server  for 
free  and  train  yourself  on  that  technology,  which 
all  employers  are  looking  for  and  if  you  can  say 
you  trained  yourself  while  unemployed,  they 
will  like  it  more.” 

Citigroup’s  Mercer  also  recommends  using 
available  open  source  tools  to  round  out  a  home 
network. 

“There  are  two  open  source  projects  called 
Dynamips,  for  simulating  Cisco  networks,  and 
Olive  for  simulating  Juniper  networks,”  Mercer 
says.  “I  am  not  talking  about  the  software  that 
gives  you  a  command  line  with  limited  com¬ 
mand  support.  Iam  talking  hardware  emulators: 
full-blown  Cisco  and  Juniper  operating  systems 
supporting  all  the  features  a  router  supports.” 


7.  GIAC  Certified  Forensics  Analyst 

8.  GIAC  Certified  Intrusion  Analyst 

9.  EMC  Proven  Professional 
Implementation  Engineer  -  Expert 

10.  GIAC  Certified  Incident  Manager 


Matt  Barber,  network  analyst  at  Morrisville 
State  College  in  New  York,  is  working  on  the  Cer¬ 
tified  Wireless  Network  Administrator  (C  WNA) 
certification  from  CWNP.  “My  workplace  pur¬ 
chased  the  self-study  kit,  which  includes  their 
official  textbook,  sample  tests  and  questions, 
and  the  cost  of  the  exam  all  for  only  a  couple 
hundred  dollars,”  Barber  says.  “A  week-long 
training  seminar  or  course  would  have  been 
hard  to  justify,  but  the  kit  was  very  affordable..” 

For  Michelle  Lange,  who  works  in  WebSPOC 
Project  Management  at  ValCom  in  Itasca,  Ill., 
buying  the  books  that  explain  the  best  prac¬ 
tices  of  ITIL  helped  her  self-train.  She  bought 
ITIL  Version  3  books  off  eBay  for  $30,  and  she 
purchased  Network+  training  books  at  Barnes 
&  Noble. 

“My  employer  offers  limited  reimbursement 
options,”  she  explains.  “I’m  sure  there  are  oth¬ 
ers  out  there  who  are  forced  to  be  thrifty  with 
training  options.  ” 

3  Build  your  own  network 

using  free  stuff 

I  For  IT  professionals,  building  a 
home  lab  could  help  progress  their  careers.  And 
according  to  techies  who  have  already  done  it, 
the  process  can  be  inexpensive. 

Stacey  Hager,  a  network  administrator  at  a 
legal  firm  in  Charleston,  WY,  says  he  put  together 
a  home  network  in  his  garage  with  used  parts 
and  software  made  freely  available  from  vendors. 
The  availability  of  a  network  helped  him  while  he 


Provide  tech  services 
for  cheap 

I  Another  means  of  homing  skills  is 
using  them.  IT  pros,  working  or  not,  can  offer 
their  tech  know-how  to  friends,  family  or  via  a 
small  side  business  for  low  or  no-cost  to  exercise 
their  tech  muscles  during  the  downturn. 

“High-tech  workers  can  offer  their  services 
for  free  and  use  that  experience  on  resumes  and 
in  interviews  to  show  potential  employers  that 
they  didn’t  let  their  skills  get  stagnant,”  SIM’s 
Lieberman  says. 

Citigroup’s  Mercer  engages  in  freelance  tech¬ 
nical  work  to  keep  skills  sharp.  He  says  the  work 
not  only  makes  him  more  appealing  to  potential 
employers,  but  also  serves  as  the  beginnings  of 
a  potential  consultancy  business  if  his  employ¬ 
ment  situation  changes. 

5  Shop  for  bargains 

IT  pros  should  also  remember  that 
I  the  economy  is  not  only  hurting 
their  companies’  businesses,  but  also  impacting 
training  firms  and  vendors. 

Bryan  Sullins,  principal  tech  trainer  at  New 
Horizons  in  Hartford,  Conn.,  says  firms  like 
his  and  others  are  offering  “recession”  pricing 
on  training  packages  that  won’t  last  when  the 
economy  returns. 

“As  soon  as  the  economy  recovers  that  won’t 
happen  again,”  he  says. 

And  don’t  discount  vendors  as  a  good  source 
of  free  training,  Mercer  says.  He  has  a  meeting 
with  Oracle  planned  that  he  says  will  serve  as 
an  educational  experience  for  him. 

“Oracle  is  going  to  do  a  presentation  on  Oracle 
security,  and  that  will  be  my  free  training,”  he 
explains.  “They  might  be  trying  to  market  stuff, 
but  for  me  it’s  free  training  because  I  can’t  get 
that  type  of  information  on  my  own.”  ■ 
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NETINSIDER  BY  SCOTT  BRADNER 

The  birth  of  an  activist  FCC? 


THE  LATEST  NEWS  out  of  the  normally  sluggish 
FCC  is  quite  a  change  of  pace.  Just  three  days 
after  The  New  York  Times  ran  a  story  on  Apple 
refusing  to  carry  Google  Voice  in  the  iTunes  App  Store  for  the  iPhone  the 
FCC  started  asking  questions  about  it.  Yes,  the  FCC  was  looking  to  dance 
without  even  waiting  to  be  asked.  Fm  a  bit  worried  for  the  toes  of  its  reluc¬ 
tant  dancing  partners. 

According  to  press  reports,  the  Google  Voice  rejection  had  happened  a 
few  weeks  earlier  but  the  news  broke  on  July  28.  On  July  31  the  FCC  sent 
letters  to  Apple,  Google  and  AT&T  asking  some  pointed  questions  about 
what  happened.  As  far  as  I  can  tell  no  one  formally  asked  the  FCC  to  get 
involved  this  time.  (The  FCC  had  been  asked  by  Skype  in  February  2007 
to  take  a  look  at  the  same  sort  of  thing.) 

But  that  request  seemed  to  fade  away  after  the  FCC  asked  for  comments 
on  Skype’s  request,  which  the  FCC  had  assigned  the  identifier  “RMT1361.” 
There  were  press  reports  at  the  time  that  the  FCC  had  rejected  the  request, 
but  that  might  not  be  the  end  of  the  story. 

The  FCC  asked  Apple  why  the  Google  Voice  application  had  been 
rejected  and  if  Apple  had  acted  alone.  It  also  asked  whether  AT&T  had 
anything  to  do  with  the  rejection,  what  power  AT&T  has  over  which  appli¬ 
cations  are  accepted,  what  other  applications  have  been  rejected  and  why. 

Apple  may  have  its  work  cut  out  for  itself  to  explain  how  the  evaluation 
and  approval  process  runs  since,  by  all  reports,  Apple  has  raised  capri¬ 
ciousness  to  an  art  form  in  the  way  it  runs  the  App  Store. 

The  FCC  asked  AT&T  some  of  the  same  questions  about  its  power  over 
what  is  accepted  in  the  App  Store,  asked  about  any  other  VoIP  applications 
running  on  other  AT&T  phones,  and  inquired  about  any  limitations  AT&T 
has  stuck  in  user  agreements. 

Finally,  the  FCC  asked  Google  for  a  description  of  Google  Voice,  what 


Apple  had  told  Google  about  why  Apple  had  said  no  to  the  application, 
what  other  applications  Google  had  in  the  Apple  App  Store  and  what 
process  Google  uses  for  applications  in  its  own  App  Store  for  Android 
phones. 

In  each  case  the  FCC  also  asked  some  other  questions,  but  the  above  list 
covers  the  high  points.  The  FCC  asked  for  answers  by  Aug.  21,  and  told 
the  companies  that  they  could  ask  for  parts  of  their  responses  to  be  kept 
confidential  as  long  as  the  requests  met  federal  requirements. 

Meanwhile,  the  FCC  has  opened  an  exploration  about  handset  exclusiv¬ 
ity.  This  effort  was  assigned  the  identifier  “RM-11497.” 

The  reason  I  bring  up  the  identifiers  is  because  the  FCC  cited  both  of 
these  efforts  in  the  opening  paragraph  of  its  letters  about  Google  Voice. 

The  FCC  said,  “In  light  of  pending  FCC  proceedings  regarding  wireless 
open  access  (RM-11361)  and  handset  exclusivity  (RM-11497),  we  are  inter¬ 
ested  in  a  more  complete  understanding  of  the  situation.” 

Sort  of  looks  like  the  Skype  request  is  not  quite  as  dead  as  it  looked.  I  will 
say  that  I’m  of  a  rather  mixed  mind  on  this  new  FCC  activity.  As  a  general 
rule  government  regulations  do  not  make  the  world  go  smoother. 

But  sometimes  they  are  needed  —  for  example,  rules  against  lead  paint 
on  kids’  toys.  I  can  see  where  rules  from  the  FCC  that  limited  the  reasons 
that  an  Apple  or  AT&T  could  block  applications  and  usages  of  networks 
would  be  a  good  thing  but  rules  limiting  what  you  and  I  can  do  with  that 
connectivity  would  not  be. 

Disclaimer:  Part  of  education  in  a  place  like  Harvard  is  to  let  students 
know  that  there  are  rules.  But  I’ve  not  seen  a  university  opinion  on  the 
FCC’s  rulemaking  prowess,  so  the  above  worry  is  mine  alone.  ■ 

Bradner  is  Harvard  University's  technology  security  officer.  He  can  be 
reached  at  sob@sobco.com. 


EYEONTHECARRIERS  BY  JOHNA  TILL  JOHNSON 


The  battle  over  voice,  the  war  of  UC 


LAST  WEEK,  I  wrote  about  the  possible  implica¬ 
tions  of  the  new  lineup  of  FCC  commissioners. 

They  certainly  haven’t  wasted  any  time:  On  Aug. 
3,  the  FCC  launched  a  full-scale  investigation  into  the  decision  by  Apple 
and  AT&T  to  reject  Google’s  voice  application  for  the  iPhone.  As  Sanford 
Bernstein  telecom  analyst  Craig  Moffatt  notes,  “The  issue  of  application 
suppression  affords  the  Administration  a  back  door  route  to  Wireless  Net 
Neutrality,  something  that  has  been  openly  espoused  by  new  FCC  Chair¬ 
man  Julius  Genachowski.” 

Stay  tuned.  But  note  this  is  even  bigger  than  net  neutrality,  or  even 
Google  vs.  AT&T.  This  is  about  defining  the  nature  of  communications  ser¬ 
vices  and  how  they’re  offered  —  a  battle  that’s  bigger  than  just  the  question 
of  what  applications  are  available  on  which  phones. 

The  question  is  over  the  nature  and  ownership  of  next-generation  uni¬ 
fied  comm  unications  architectures.  Converging  voice,  data  and  video  onto 
a  common  network  and  set  of  platforms  creates  a  colossal  power  struggle 
over  infrastructure  real  estate.  Companies  that  never  previously  consid¬ 
ered  themselves  competitors  now  find  themselves  at  each  others’  throats. 

One  example:  Wireless  devices.  As  4G  arrives  —  there  are  rumors  that 
Verizon  will  be  delivering  long-term  evolution  (LTE)  services  as  early  as 
next  January  —  the  distinction  between  “phones”  and  “computers”  pales. 
A  device  with  a  wireless  connection  and  the  ability  to  handle  voice  calls 
as  well  as  data  messaging  and  video  is  as  likely  to  be  a  netbook  as  a  phone. 
That  means  the  Motorolas  and  Nokias  are  now  competing  with  the  Dells. 
(Apple  wins  either  way.) 

Another  example:  Enterprise  unified  communications.  Microsoft  is  now 


heavily  competing  against  Avaya  and  Cisco  to  serve  as  the  unified  commu¬ 
nications  platform  of  choice.  In  Microsoft’s  vision,  voice  is  just  another  appli¬ 
cation  that  runs  over  OCS.  For  the  networking  folks,  that  vision  is  flawed, 
because  data-  messaging  infrastructures  aren’t  able  to  handle  the  perfor¬ 
mance  requirements  of  real-time  voice.  (I’ve  been  advising  clients  for  years 
to  steer  clear  of  Microsoft’s  grandiose  claims  around  voice  support.) 

And  that  brings  us  back  to  AT&T  and  Apple  vs.  Google.  Here  you  have 
a  service  provider,  a  device  vendor  and  an  applications  provider  —  and 
each  one’s  eyeing  the  other’s  infrastructure  turf.  Interestingly,  right  after 
the  FCC  announced  its  inquiry,  Google  CEO  Eric  Schmidt  resigned  from 
Apple’s  board,  saying  the  two  companies  were  now  competitors. 

Now,  some  of  this  is  Google’s  propensity  for  injecting  FUD  (fear,  uncer¬ 
tainty,  and  doubt).  Google’s  an  absolute  genius  at  launching  competitive 
moves  designed  to  throw  companies  off-guard,  and  then  profiting  from  the 
subsequent  confusion.  (Watching  Microsoft  —  the  former  king  of  FUD  — 
play  defense  against  Google’s  tactics  is  endlessly  entertaining). 

But  bringing  in  the  FCC  does  more  than  inject  FUD  into  the  fray.  It’s  a 
nice  way  to  get  two  birds  with  one  stone:  launch  a  process  that  will  likely 
culminate  in  the  imposition  of  net  neutrality,  and  accelerate  Google’s  UC 
land  grab.  In  other  word’s,  it’s  a  poke  in  the  eye  to  AT&T,  Apple,  and  Micro¬ 
soft  —  all  in  one  fell  swoop. 

It’s  going  to  be  an  interesting  couple  of  years.  ■ 

Johnson  is  president  and  senior  founding  partner  at  Nemertes  Research, 
an  independent  technology  research  firm.  She  can  be  reached  at  johna@ 
nemertes.com. 


18  AUGUST  3  -  10,  2009  www.networkworld.com 


SAL’S  POINT  OF  VIEW  j 

The  Real  Stuff. 


Financial  services  firms  like  ours  are  very  dependent  on  the  use  of 
email  and  Web  connectivity  to  conduct  our  business.  As  the  Director 
of  information  technology  I  have  to  make  the  security  of  those  channels 
my  top  priority. 

And  as  the  use  of  the  domain  name  system  to  conduct  attacks,  steal 
data  and  interrupt  business  has  increased,  so  has  our  need  to  monitor 
our  communication  channels.  In  this  new  environment,  using  standard 
command  line  tools  to  detect  and  fix  critical  problems,  particularly  in  a 
crisis,  is  no  longer  an  option.  It's  time  consuming  and  costly.  And  frankly, 
that's  time  I  don't  have  and  a  cost  my  firm  can't  afford.  Like  any  smart 
IT  guy  I  look  for  the  most  efficient  solution  to  solve  a  problem.  That's  why 
I  absolutely  depend  on  DNSstuff  to  stay  on  top  of  my  domain  management 
responsibilities  and  fix  a  DNS  problem  fast  in  a  crisis.  DNSstuff  is  rock 
solid  and  reliable;  an  every  day  tool  that  I  can’t  afford  to  be 
without.  I  can  make  DNS  changes  quickly,  manage  my 
domains  with  ease,  and  run  a  report  in  seconds.  And 
DNSstuff’s  24  hour  alert  service  helps  me  detect 
critical  changes  before  my  users  do. 

Like  it  or  not,  businesses  are  more  vulnerable 
than  ever  to  DNS  attacks.  I  sleep  better  at 
night  knowing  I  can  depend  on  DNSstuff  to 
deal  with  it.  That's  my  point  of  view. 

For  real.  V  fi*  '  ' 


-SAL  QUINONEZ 

IT  Director,  Thomas  H.  Lee  Partners 


1  DNS  tuff.com 

ROCK  SOLID  AND  DEPENDABLE 


METW8RKW0RLD 


CONFERENCE  &  EXPO 


Ar 


The 


most-important 

daysin|Yr09 

right  in  your  own  backyard 


•  * 


Ay 


i  =  IT  ROADMAP  2009  IS  COMING  TO  YOU!  ATTEND  FREE! 


2009  IT  ROADMAP  SCHEDULE 


Washington,  O.C.  I  October  27 


San  Francisco,  CA  I  December  10 


REGISTER  FOR  THE  CITY  NEAR  YOU! 

The  one  don’t  miss  day  in  a  year  like  no  other. 


Save  the  date  for  IT  Roadmap  when  it  comes  to  a  city  near  you. 
The  annual,  one-day  conference  and  expo  that’s  right  in  your 
own  backyard— no  travel  required!  That  brings  out  IT’s  best  and 
brightest.  And  surrounds  you  with  the  tools  you  need  to  succeed 
in  10  key  areas  of  IT. 

Visit  NetworkWorld.com/calendar2009—  qualify  to  attend 
free — and  you’ll  get  the  latest  news  and  insights  from  Network 
World  editors.  Forecasts  from  IT’s  most-followed  analysts.  Case 
histories  from  successful  end  users.  Answers  from  key  vendors. 
A  360°  day  of  strategies  and  solutions  designed  to  help  you  do 
more  with  less  in  today’s  tough  economic  times. 


10  TRACKS  OF  IT 

|  ALL  IN  1  DAY 

1 .  Application  Delivery 

2.  Building  a  Resilient  &  Dynamic 
Data  Center 

3.  Green  IT 

4.  Network  Management,  Automation 
&  Control 

5.  SaaS,  Cloud  Computing  & 

Managed  Services 

: 

6.  Security  &  Compliance 

■ 

7.  Simplifying  the  Data  Center  Network 

8.  Unified  Communications,  VoIP  & 
Collaboration 

9.  Virtualization 

10.  WAN,  Wireless  &  Mobility  Strategies 


Mark  your  calendar  now  and  register  online  for  the  city  nearest  you. 


www.networkworld.com/itr2009  or  call  1-800-643-4668 


NEWSANALYSIS 


Nine  storage 
companies  to  watc 

Flash  memory,  virtualization  and  cloud 
computing  targeted  by  storage  companies  j 


BY  JON  BRODKIN 


Building  a  data  storage  start-up  in  this 
economy  is  quite  a  challenge,  but  there 
is  room  for  innovation  in  an  industry 
suffering  from  inefficiency  and  mas¬ 
sive  growth  in  data  volumes.  These 
nine  data  storage  start-ups  are  trying  to  address 
such  problems  with  technologies  including 
memory  virtualization,  flash-based  solid-state 
disks  and  cloud  storage. 

AutoVirt 

Founded:  June  2007 
Headquarters:  Nashua,  N.H. 

What  it  offers:  AutoMove,  an  automated 
data  migration  software  package  for  Windows 
shops;  AutoClone,  which  speeds  up  the  repli¬ 
cation  and  movement  of  Windows  data;  and 
AutoMap,  which  maps  a  customer’s  distributed 
IT  environment. 

How  company  got  its  start:  AutoVirt  found¬ 
ers  wanted  to  focus  on  midrange  businesses  that 
lack  the  sophisticated  data  movement  and  man¬ 
agement  tools  available  to  larger  enterprises. 

Why  it’s  worth  watching:  The  inefficiency 
of  network-attached  storage  (NAS),  the  rapid 
growth  of  data  and  even  the  economic  downturn 
are  all  factors  that  could  potentially  help  Auto¬ 
Virt  succeed,  according  to  an  IDC  profile  on  the 
vendor.  Storage  inefficiency  will  not  be  tolerated 
in  a  recession,  IDC  notes.  “Senior  management 
will  demand  remediation  that  will  include  reor¬ 
ganization  of  network  shares  and  resulting  data 
migrations  from  one  location  to  another,  the 
sweet  spot  of  the  AutoVirt  solution,”  IDC  says. 

How  company  got  its  name:  AutoVirt  is 
short  for  automated  virtualization,  in  reference 
to  its  file  virtualization  technology. 

CEO:  Josh  Klein,  previously  president  and 
COO  of  IT  consulting  and  services  firm  Glass- 
House  Technologies,  has  also  held  executive 
positions  at  EMC  and  IBM. 

Funding:  $8.5  million  from  Kepha  Partners 
and  Sigma  Partners 

Who’s  using  the  product:  Five  Point  Capital, 
Children’s  Hospital  Boston,  Harvard  University 
and  others. 

Cachengo 

Founded:  April  2009 
Headquarters:  Berthoud,  Colo. 

What  it  offers:  Cachengo  offers  cloud  storage 


that  is  similar  to  Amazon’s  Simple 
Storage  Service,  but  focuses  heavily  on 
de-duplication  and  continuous  data  protec¬ 
tion  by  combining  off-site  storage  with  a  locally 
installed  appliance.  Cachengo’s  Director  100, 
the  appliance,  is  a  file  server  that  supports  the 
CIFS,  NFS  and  ISCSI  protocols. 

How  company  got  its  start:  Founder  and 
CEO  Mike  Young  said  he  was  “irritated  at  the 
industry”  for  approaches  that  led  to  more  prod¬ 
uct  segmentation  and  higher  prices. 

Why  it’s  worth  watching:  Cachengo  is  hop¬ 
ping  aboard  the  fast  growing  cloud  storage 
bandwagon,  but  pairing  the  service  with  an 
appliance  that  it  says  combines  the  features  of 
primary  storage,  backup  storage  and  disaster 
recovery  into  one  system.  “They’re  doing  some¬ 
thing  pretty  cool,”  says  analyst  Tom  Trainer  of 
Analytico.  “They’re  essentially  caching  data  and 
sending  it  off  to  the  cloud.” 

As  a  small  company,  Cachengo  might  strug¬ 
gle  at  first  with  customers  “who  are  fearful  of 
investing  in  nascent  technology,”  Trainer  says. 
The  vendor  is  pursuing  a  two-pronged  business 
strategy  by  targeting  both  the  small  and  midsize 
business  market  as  well  as  fellow  vendors  who 
want  to  base  their  own  cloud  backup  services  on 
the  Cachengo  appliance  and  hosted  service. 

How  company  got  its  name:  The  name  is 
cache-n-go  without  the  hyphens. 

CEO:  Young  was  previously  CTO  of  the  stor¬ 
age  appliance  business  unit  at  Xyratex. 

Funding:  Self-funded 

Who’s  using  the  product:  Cachengo  has  sev¬ 
eral  customers  in  the  financial,  healthcare  and 
semi-conductor  industries. 

RNA  Networks 

Founded:  September  2006 

Headquarters:  Portland,  Ore. 

What  it  offers:  RNA  Networks  virtualizes 
memory  and  shares  it  across  servers,  with 
products  including  RNAmessenger,  which  is 
designed  for  trade  executions  that  need  low 
latency  and  high  throughput;  and  RNAcache, 
which  creates  a  shared,  network-attached  cache 
of  virtualized  memory. 

How  company  got  its  start:  The  founders 
were  looking  for  a  way  to  deliver  data  to  appli¬ 
cations  faster  without  overhauling  existing  sys¬ 
tems  or  sacrificing  CPU  cycles. 

Why  it's  worth  watching:  Latency  is  the 
enemy  of  many  applications,  particularly  those 


used  in  the  financial  services,  energy  and  high- 
performance  computing  industries  targeted  by 
RNA  Networks.  RNA’s  memory  virtualization 
aims  to  eliminate  this  latency  and  provide  new 
levels  of  flexibility  by  creating  shared  pools 
of  memory,  which  let  an  application  access  its 
entire  working  data  set  in  memory,  instead  of 
from  a  lower  tier  of  storage. 

How  company  got  its  name:  RNA,  or  ribo¬ 
nucleic  acid,  acts  as  a  messenger  of  genetic  infor¬ 
mation,  and  RNA  Networks  considers  itself  a 
messenger  of  data  in  the  data  center. 

CEO:  Clive  Cook,  former  CEO  of  VeriLAN,  a 
wireless  network  services  provider;  and  Elem- 
atics,  a  small  software  company  that  focused  on 
data  transmission  in  telecom  networks. 

Funding:  $7  million  from  Menlo  Ventures, 
Oregon  Angel  Fund,  Divergent  Ventures  and 
Reference  Capital 

Who's  using  the  product:  Several  paying 
customers  and  others  in  the  testing  phase. 

SandForce 

Founded:  June  2006 

Headquarters:  Saratoga,  Calif. 

What  it  offers:  SF-1500  SSD  Processors, 
which  use  commodity  NAND  flash  memory  and 
enhance  reliability  and  endurance  to  make  them 
suitable  for  an  enterprise  data  center. 

How  company  got  its  start:  Founders  Alex 
Naqvi  and  Radoslav  Danilak  wanted  to  create  a 
less  expensive  way  to  provide  enterprise-class 
flash  memory. 

Why  it’s  worth  watching:  Because  of  perfor¬ 
mance  and  reliability  issues,  most  enterprise 
flash  products  use  single-level  cell  flash  chips 
instead  of  the  multi-level  cell  chips  used  in  con¬ 
sumer  devices.  But  single-level  cell  chips  are 
considerably  more  expensive.  That’s  why  sev¬ 
eral  vendors,  including  SandForce,  are  develop¬ 
ing  management  tools  that  improve  the  speed 
and  reduce  wear  and  tear  on  multi-level  cell 
technology. 

Gartner  says  it  “remains  to  be  seen"  whether 
SandForce  can  fulfill  the  promises  it  is  mak¬ 
ing,  but  that  its  products  have  “the  potential  to 
quickly  and  dramatically  reduce  the  price  of 
enterprise-grade  SSD  solutions  and  accelerate  a 
more  widespread  adoption  of  solid-state  storage 

See  Storage, page  24 
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HiPerlink 


ICC's  HiPerlink  Copper  ‘Plug  and  Play’  Solution 

Those  big  name  brands  would  like  you  to  think  that  their  pre-terminated 
solutions  are  the  most  cost-effective  ways  to  quickly  deploy  network 
systems  and  upgrades,  therefore  saving  you  money.  The  truth  is, 
ICC's  pre-terminated  solutions  are  consistently  priced  40%  lower  than 
most  pre-terminated  suppliers. 

How  do  we  do  this?  Simple,  we  make  our  own  cables  so  we  don't 
need  to  put  high  markups  on  them  like  others  do.  In  this  economy, 
you  can’t  afford  to  pass  up  that  kind  of  savings. 


Save 

S<7C 


Don’t  believe  us? 

Call  888-ASK-4-ICC  extension  4000  and  ask  for  a  quote. 

Go  on-line  www.icc.com/hiperlink 


✓  Plug  and  Play 

install  CAT  6A,  CAT  6,  and  CAT  5e  pre-terminated  solutions  right 
out  of  the  box  with  little  sweat  and  no  hassle. 

✓  Modular  and  Flexible 

ICC’s  plug  and  play  cassettes  come  with  a  twist.. .they're  modular. 
Other  supplier’s  plug  and  play  cassettes  are  fixed.  With  ICC,  you 
can  easily  change  or  move  modules  from  the  cassette  after 
installation.  You  can  also  order  any  color  modules  you  prefer; 
blue,  red,  orange,  yellow  or  even  purple.  There  are  ten  different 
colors  to  choose  from. 

✓  Built-to-Order 

,Ca$sette-to-Cassette,  Cassette-to-Workstation,  Cassette-to-Plug, 
Cassette-to-Blunt,  and  Cassette-to-Patch  Box. 

✓  Lifetime  Warranty"  , 

Reliability  and  assurance  for  end:to-end  cabling  systems.  1 


PremiumProducts  •  ProvenPerformance  • 


Complex  Data  Cabling 
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1  for  ICC  "s  lifetime  trifled  jH^o  Odblinq. System timiled  v/artonty  j'  C  ! 


■ 


■ 


NEWSANALYSIS 


■  Storagejrom  page  22 
technologies.” 

How  company  got  its  name:  SandForceisa 
play  on  SSD  (for  solid-state  disk)  and  NAND. 

CEO:  Naqvi,  CEO  and  co-founder,  previ¬ 
ously  founded  Luminous  Networks,  which  was 
acquired  by  telcom  equipment  provider  Adtran; 
and  held  management  positions  at  Intel  and 
other  IT  companies. 

Funding:  More  than  $20  million  from  DCM, 
Storm  Ventures  and  several  undisclosed  storage 
companies 

Who’s  using  the  product:  SandForce’s  tech¬ 
nology  will  ship  later  this  year  from  OEM  ven¬ 
dors,  the  names  of  which  are  undisclosed. 

Scale  Computing 

Founded:  October  2007 

Headquarters:  Indianapolis,  Ind. 

What  it  offers:  SN 1000  and  SN  2000,  stor¬ 
age  nodes  which  use  Scale’s  clustered  file  system 
to  create  storage-area  network  (SAN)  or  NAS 
systems  with  commodity  hardware. 

How  company  got  its  start:  The  founders 
were  trying  to  build  a  supercomputer  for  less 
than  $60,000  using  commodity  hardware,  and 
needed  a  clustered  file  system  and  storage,  and 
discovered  a  problem:  they  couldn’t  find  5TB  of 
appropriate  storage  for  less  than  $50,000. 

Why  it’s  worth  watching:  With  clustered 
systems  lacking  a  single  point  of  failure,  Scale 
can  offer  reliable  Tier  2  and  Tier  3  storage  for 
prices  starting  at  $11,000.  Forrester  Research 
analyst  Andrew  Reichman  notes  that  Scale  will 
face  stiff  competition  from  Dell  EqualLogic  and 
HP  LeftHand,  but  it  offers  the  advantages  of  low 
cost  and  native  NAS  capabilities. 

How  company  got  its  name:  The  name  refers 
to  scalability  of  computing  resources. 

CEO:  Jeff  Ready  was  previously  CEO  and  co¬ 
founder  of  Corvigo,  an  antispam  appliance  ven¬ 
dor  acquired  by  Tumbleweed  Communications. 

Funding:  $5  million  from  BlueChip,  Spring- 
mill,  CID  and  State  of  Indiana  21st  Century 
Fund 

Who’s  using  the  product:  Customers  include 
a  Fortune  500  telecom  company,  and  others  in 
the  legal  and  health-care  industries. 

Simply  Continuous 

Founded:  October  2006 

Headquarters:  San  Francisco 

What  it  offers:  Data  Recovery  Vault,  a 
hosted  service  that  integrates  with  a  company’s 
backup  infrastructure  and  replicates  data  to  a 
collocation  facility.  A  second  service  known  as 
AppAlive  recovers  entire  applications,  rather 
than  just  data. 

How  company  got  its  start:  Co-founders 
Tom  Frangione  and  Chris  Eidler  launched  the 
venture  after  seeing  that  many  users  struggle 
to  find  a  cost-effective  disaster-recovery  service. 

Why  it's  worth  watching:  Simply  Continu¬ 
ous  could  appeal  to  midsize  businesses  with  its 
service-level  agreements,  and  functionality  that 
exceeds  what’s  offered  by  consumer-oriented 
Web  backup  products.  It  will  be  interesting 


to  watch  how  the  company  reacts  to  the  EMC 
acquisition  of  Data  Domain,  because  Simply 
Continuous  designed  its  first  products  for  cus¬ 
tomers  using  Data  Domain’s  backup  technol¬ 
ogy.  But  company  officials  say  their  partnership 
with  Data  Domain  will  continue  within  the  EMC 
hierarchy. 

How  company  got  its  name:  Simply  Con¬ 
tinuous  indicates  simplicity  in  data  recovery, 
and  the  need  for  business  operations  to  be 
continuous. 

CEO:  Frangione  was  previously  CEO  and  co¬ 
founder  of  Telephia,  which  was  sold  to  Nielsen 
for  $400  million  in  2007. 

Funding:  $10  million  from  Greylock 
Partners 

Who’s  using  the  product:  Vocera,  Scout  Labs, 
Savvion  and  others . 

Tarmin 

Founded:  June  2006 

Headquarters:  Ongar,  United  Kingdom 

What  it  offers:  GridBank,  software  that  auto¬ 
matically  moves  data  from  primary  storage  to 
less  expensive  secondary  storage  or  third-party 
cloud  platforms,  assisting  the  process  of  long¬ 
term  data  preservation.  The  software  also  can 
quickly  find  and  retrieve  files  in  e-discovery  or 
recovery  situations,  according  to  Tarmin.  A  new 
partnership  allows  Tarmin’s  software  to  inte¬ 
grate  with  the  cloud  storage  platform  offered  by 
vendor  Nirvanix. 

How  company  got  its  start:  Founder  and 
CEO  Shahbaz  Ali,  who  was  previously  respon¬ 
sible  for  MasterCard’s  worldwide  archiving 
and  content  retention  strategies,  wanted  to 
build  software  that  expanded  the  usefulness  of 
archiving,  secondary  storage  and  data  manage¬ 
ment  products  he  had  been  using. 

Why  it’s  worth  watching:  Tarmin  can  help 
customers  archive  data  that  is  unchanging 
and  infrequently  accessed,  which  accounts  for 
the  “overwhelming  majority  of  corporate  data,” 
says  Enterprise  Strategy  Group  analyst  Lauren 
Whitehouse.  The  start-up’s  software  can  also 
help  companies  comply  with  various  document 
retention  requirements,  she  says. 

Tarmin’s  “grid-based  architecture  enables 
capacity  and  performance  scalability,  as  well  as 
cost-effectiveness,  and  its  intelligent  storage  soft¬ 
ware  allows  organizations  to  manage  the  full  life 
cycle  of  their  information  and  automate  all  stor¬ 
age  management  processes,”  Whitehouse  says. 

How  company  got  its  name:  Tarmin  was  a 
minor  Star  Trek  character  who  was  a  historian 
trained  in  “telepathic  memory  retrieval.” 

Funding:  $4.6  million 

Who’s  using  the  product:  Tarmin’s  tech¬ 
nology  is  aimed  at  small  businesses  and  large 
enterprises,  and  users  include  the  city  of  Saf- 
ford,  Ariz. 

WhipTail 

Founded:  December  2008 

Headquarters:  Summit,  N.J. 

What  it  offers:  WhipTail’s  eponymous  appli¬ 
ances  provide  solid-state  disks  in  capacities  of 


1.5T  to  6TB,  with  speeds  exceeding  100,000 
IOPS. 

How  company  got  its  start:  WhipTail  is  a 
spinoff  of  TheAdmins,  a  reseller  that  partners 
with  Cisco,  Microsoft,  VMware  and  other  big  IT 
vendors.  The  companies  share  a  common  man¬ 
agement  team. 

Why  it’s  worth  watching:  Similar  to  Sand- 
Force,  WhipTail  uses  multi-level  cell  flash 
chips  normally  used  in  consumer  devices,  but 
employs  special  software  to  optimize  the  write 
cycle.  WhipTail  says  this  allows  the  company 
to  keep  prices  down  and  ensure  that  disks  last 
a  minimum  of  seven  years.  “They’re  using 
multi-level  cell  and  a  very  smart  technique  for 
managing  it,”  says  analyst  Jim  Bagley  of  Storage 
Strategies  Now. 

How  company  got  its  name:  After  whiptail 
lizards,  which  are  sometimes  called  racerunners 
because  of  their  ability  to  run  about  17  mph. 

CEO:  Ed  Rebholz,  who  is  also  president  and 
CEO  of  reseller  TheAdmins. 

Funding:  Privately  funded 

Who’s  using  the  product:  Fareportal,  Rari¬ 
tan  Bay  Medical  Center  and  several  other  mid-  to 
large-size  enterprises 

Zetta 

Founded:  January  2008 

Headquarters:  Sunnyvale,  Calif. 

What  it  offers:  A  cloud  storage  service  backed 
by  a  file  system  with  snapshots,  replication  and 
other  enterprise-class  features. 

How  company  got  its  start:  Zetta’s  top  exec¬ 
utives  had  long  been  consumers  of  enterprise 
storage  products  and  generally  found  them¬ 
selves  unsatisfied,  but  decided  a  new  cloud  stor¬ 
age  platform  could  solve  many  of  the  data  stor¬ 
age  challenges  faced  by  IT  shops. 

Why  it’s  worth  watching:  Zetta  is  trying  to 
compete  against  Amazon’s  Simple  Storage  Ser¬ 
vice  by  promising  robust  enterprise  capabili¬ 
ties,  such  as  rapid  provisioning  and  massively 
scalable  capacity;  a  highly  redundant  architec¬ 
ture  ensuring  continuous  availability;  and  easy 
integration  with  existing  file-based  applications. 
Zetta’s  co-founders  include  some  of  the  Web’s 
early  innovators:  CEO  Jeff  Treuhaft  was  one  of 
Netscape’s  first  employees;  and  vice  president  of 
engineering  Lou  Montulli  invented  Web  cookies 
and  was  also  an  early  Netscape  employee. 

How  company  got  its  name:  “Zetta”  refers 
to  a  numerical  prefix  denoting  a  “1”  followed  by 
21  zeroes.  Industry  experts  believe  the  annual 
amount  of  digital  information  created  could 
exceed  1  zettabyte  in  the  next  year  or  two,  put¬ 
ting  greater  strain  on  storage  systems. 

CEO:  Treuhaft,  in  addition  to  his  Netscape 
experience,  led  the  global  digital  content  and 
messaging  business  at  VeriSign. 

Funding:  $10.7  million  from  Sigma  Partners 
and  Foundation  Capital 

Who’s  using  the  product:  A  private  beta 
program  included  more  than  90  customers 
from  industries  including  financial  services, 
education,  entertainment,  manufacturing  and 
technology.  ■ 
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CA  Spectrum  solutions  help  you  pinpoint  and  solve  information  flow 
problems  across  the  IT  infrastructure  —  networks,  physical  and  virtual 
systems,  databases  and  applications  —  before  they  impact  your  end  users. 
Eliminate  costly,  labor-intensive  oversight  and  deliver  seamless  service 
with  payback  in  under  a  year,  f  hat's  the  power  of  leap, 

Read  the  IDC  white  paper  on  CA  software  and  ROI  at  ca.com/spectrum/value 
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GEARHEAD  BY  MARK  GIBBS 


The  Sentimeter,  Part  1 


i  IN  ONE  OF  my  June  Web  Applications  newslet¬ 
ters  I  wrote  about  a  new  service  called  OpenAm- 
plify  that  had  impressed  me. 

OpenAmplify  is  a  linguistic  engine  that  you  present  a  block  of  text  to 
analyze  through  a  RESTful  API.  The  service  returns  the  content’s  seman¬ 
tic  indications  (called  “signals”)  divided  into  topics,  actions,  styles  and 
demographics. 

Topic  analysis  identifies  the  nouns  that  are  significant  and  reports  their 
ranking  and  polarity  (the  degree  of  positive  or  negative  bias  as  shown  in 
the  text),  along  with  guidance  (a  measure  of  whether  advice  is  being  sought 
or  offered),  identification  of  proper  nouns  and  referenced  locations. 

Action  analysis  reports  on  the  words  that  relate  to  action  with  measures 
of  decisiveness  (how  likely  the  action  is  to  be  taken),  guidance  and  tempo¬ 
rality  (when  the  action  may  take  place). 

Style  analysis  detects  how  “flowery”  the  writing  style  is  and  the  amount 
of  slang  used,  while  demographic  analysis  returns  measures  of  the  age, 
gender  and  education  level  signals  of  the  text’s  author  or  audience. 

What  got  me  really  excited  was  using  OpenAmplify  to  analyze  social 
media  in  which  I  include  not  only  Twitter,  Facebook  and  all  the  other  usual 
suspects,  but  also  e-mail  and  instant  messaging. 

There’s  a  lot  to  the  API,  but  here’s  a  simple  example  of  how  you  could 
request  an  OpenAmplify  analysis:  http://portaltnx.openamplify.com/ 
AmplifyWeb/AmplifyThis?analysis~all&apiKey=<apikey>&inputtext=<u 
rlencodedJnput_text> 

In  this  request  you’d  insert  your  API  key  value  in  place  of  <apikey> 
(you  get  this  key  when  you  sign  up,  which  is  free)  and  the  text  you  want 
to  have  analyzed  in  place  of  the  string  <urlencoded_input_text>  format¬ 
ted  by  URL  encoding.  The  returned  results  are  in  XML  format  by  default 


(JSON  and  DART  are  also  options).  The  results  from  a  real  example 
are  too  long  to  include  here  but  the  API  documentation  has  several 
examples. 

What’s  really  cool  about  this  is  that  instead  of  submitting  URL  encoded 
text  you  can  give  OpenAmplify  a  URL  and  it  will  go  and  fetch  the  remote 
content  and  then  analyze  and  return  the  results.  So,  should  you  be  so  moti¬ 
vated,  you  could  try  this  query: 

http://portaltnx.openamplify.com/AmplifyWeb/AmplifyThis?apiKey=< 

apikey>&analysis=all&outputFormat=xml&sourceURL=http%3A%2F%2 

Fsearch.twitter.com%2Fsearch.atom%3Flang%3Den%26rpp%3D100%2 

6page%3Dl%26q%3Diran 

This  request  asks  OpenAmplify  to  fetch  a  URL,  which  is  in  fact  another 
API  request  for  Twitter’s  search  interface  and,  in  this  case,  instructs  it  to 
look  for  “iran",  and  analyze  that  content. 

What  we  get  back  are  all  of  the  OpenAmplify  analyses  for  all  of  the  Twit¬ 
ter  content  and  the  various  measures  for  the  search  term  “Iran”  will  be 
among  them. 

A  better  way  to  use  these  services  would  be  to  interrogate  Twitter  for  the 
target  search  term  and  then  submit  just  the  text  of  each  tweet  individually 
or  as  a  group  to  OpenAmplify.  By  analyzing  tweets  individually  you  could 
separate  the  positive  and  negative  responses  for  a  deeper  analysis  while 
the  bulk  analysis  would  give  you  a  measure  of  the  sentiment  of  the  Twitter 
population  in  general. 

This  has  resulted  in  a  free  tool  that  I’m  about  to  make  available  as  an 
experiment:  The  Gibbs  Universal  Industries  Sentimeter,  a  real-time  Twit¬ 
ter  sentiment  analyzer  that  I  will  explain  in  detail  next  week.  ■ 

Gibbs  in  Ventura,  Calif.,  to  gearhead@gibbs.com. 


ITBESTPRACTICES  BY  LINDA  MUSTHALER 

Six  things  about  botnets  that  will  scare  you 


NETWORK  WORLD  RECENTLY  published  a 
couple  of  articles  about  botnets  that  painted  a 
dire  picture  of  botnets  taking  over  PCs  —  the 
ones  on  corporate  networks  as  well  as  the  ones  we  use  at  home. 

I  wondered  just  big  the  botnet  problem  is  and  what  I  learned  with  a  little 
bit  of  research  is  enough  to  make  you  want  to  return  to  the  days  of  stand¬ 
alone  computing.  The  reality  is  worse  than  most  people  suspect.  Here  are 
six  things  about  botnets  that  will  scare  your  pants  off. 

1.  The  process  of  developing  software  that  creates  and  controls  bot¬ 
nets  has  reached  a  professional  level.  Forget  script  kiddies  that  are  out 
for  kicks;  developers  are  in  it  to  make  a  lot  of  money.  The  techniques  they 
use  to  create  malware  or  command  and  control  software  are  as  sophisti¬ 
cated  as  those  used  by  any  commercial  software  company.  What’s  more, 
this  underground  development  community  is  very  cooperative  —  almost 
like  a  legitimate  open  source  community.  Software  is  packaged  and  sold 
or  passed  around,  and  developers  add  their  “personal  touches”  to  create 
many  variants  of  the  malware.  Finjan  reports  that  the  Golden  Cash  net¬ 
work  operated  by  cybercriminals  provides  an  exploit  toolkit  as  well  as  an 
attack  toolkit  to  distribute  malware. 

2.  Once  a  PC  is  on  a  botnet,  the  use  of  that  PC  can  be  bought  and  sold 
many  times.  For  example,  the  Golden  Cash  network  is  a  vast  botnet 
exchange.  Cyberthieves  purchase  malware-infected  PCs  from  anyone  in 
the  underground  market  and  then  bundle  them  and  resell  them  to  crimi¬ 
nals  who  want  to  rent  the  use  of  a  botnet. 

3.  Botnets  use  multiple  automated  propagation  vectors  to  spread 
including  spam,  worms,  viruses  and  drive-by  download  attacks.  For 
instance,  legitimate  Web  sites  are  often  compromised  with  HTML  tags 
that  force  a  victim’s  browser  to  download  JavaScript  code  from  a  server 


that’s  controlled  by  the  attacker.  That  code  can  launch  a  number  of  exploits 
against  the  unsuspecting  PC.  If  any  of  the  exploits  is  successful,  the  PC  can 
become  the  next  zombie  on  the  botnet,  making  it  easier  than  ever  for  the 
attacker  to  collect  new  nodes  on  his  illicit  network. 

4.  The  malware  that  turns  the  PC  into  a  bot  can  hide  as  a  rootkit,  making 
it  exceptionally  hard  to  detect  and  eradicate  the  malware.  The  Torpig  bot¬ 
net,  as  an  example,  implants  Mebroot  on  the  victim  PC.  Mebroot  is  a  rootkit 
that  replaces  the  system’s  Master  Boot  Record.  Therefore,  the  PC  is  under 
the  attacker’s  control  even  before  the  operating  system  loads. 

5.  Once  installed,  the  malware  can  attack  and  nullify  the  software  that 
is  supposed  to  detect/prevent  the  malware  infection.  Intel  researchers  say 
botnet  developers  have  begun  to  target  the  antivirus,  local  firewall  and  intru¬ 
sion  prevention/detection  software  and  services.  They  identified  at  least  two 
ways  that  a  botnet  blocked  the  security  software  from  getting  updates: 

■  A  botnet  changed  the  local  DNS  settings  of  the  affected  system 
to  disable  the  antivirus  software  from  reaching  its  update  site. 

■  A  botnet  was  actively  detecting  connection  attempts 
to  the  update  site  and  blocking  them. 

6.  Botnet  malware  code  is  often  polymorphic;  that  is,  it  changes  with 
every  new  infection.  This  means  that  signature-based  antivirus  software 
is  useless.  What’s  more,  the  Intel  researchers  say  techniques  such  as  code 
obfuscation,  encryption  and  encoding  further  hide  the  true  nature  of  the 
code,  making  it  hard  for  antivirus  software  to  detect  it. 

It’s  time  to  realize  what  a  big  threat  botnets  are  to  legitimate  businesses 
and  organizations.  H 

Musthaler  is  a  principal  analyst  at  Essential  Solutions  Corporation.  She 
can  be  reached  at  lmusthaler@essential-iws.com. 
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S  CLEAR  CHOICE  TEST  INTRUSION  PREVENTION  SYSTEMS 

Cisco  IPS  7.0  raises  the  bar 

New  global  threat  correlation  feature  boosts  effectiveness  of  intrusion-prevention 
devices  BY  JOEL  SNYDER 


Cisco  is  shipping  what  it  claims  is  the  first  intrusion-prevention 
system  to  correlate  IP  reputation  filtering  with  signature-based 
intrusion  prevention  sensors. 

We  tested  the  software  upgrade  to  Cisco’s  shipping  IPS  hard¬ 
ware  and  appliances  and  found  that  not  only  has  Cisco  increased 
the  value  of  its  IPS  in  preventing  attacks,  it  has  done  so  in  a  way  that  any 
security  manager  can  easily  and 
intuitively  deploy  in  just  minutes. 

While  there  are  the  rough  edges 
and  blank  spots  you’d  expect  in 
any  upgrade,  Cisco  has  set  the  bar 
pretty  high  with  this  release. 

When  Cisco  acquired  Ironport 
in  2007,  it  got  a  hidden  gem  in 
the  deal:  SenderBase,  which  is 
Ironport’s  IP  address  reputation 
service.  SenderBase  originally 
focused  on  spam  sources,  but  when 
Ironport  moved  into  the  Web  secu¬ 
rity  gateway  business  it  refocused 
SenderBase  as  a  more  generic  ser¬ 
vice  that  addressed  spam,  malware 
and  viruses. 

Cisco  has  taken  the  SenderBase 
technology  and  created  yet  another 
reputation  service,  Cisco  Sensor- 
Base,  which  is  accessible  in  the  IPS 
7.0  software  release.  We  found  that  SensorBase  is  tightly  integrated  with 
the  IPS  and,  as  our  testing  shows,  actually  works. 

Security  managers  can  use  SensorBase  data  in  two  ways.  Reputation 
filtering  lets  you  block  all  traffic  from  IP  addresses  with  an  extremely  bad 
reputation.  This  is  done  regardless  of  traffic  type  —  all  traffic  from  these 
sites  will  be  blocked. 

This  basic  use  of  reputation  filtei  s  isn’t  new,  but  what’s  interesting  is  that 
Cisco  will  use  this  reputation  data  to  change  the  Risk  Rating  of  security 

How  SensorBase  works 

Understanding  exactly  how  SensorBase  will  affect  an  event's 
Risk  Rating  when  Global  Correlation  Inspection  is  turned 
on  is  somewhat  complicated.  You  have  to  pick  a  system- 
wide  level,  ranging  from  “permissive"  to  “standard”  to  “aggres¬ 
sive.”  Then,  every  time  an  event  occurs  where  the  IP  address 
involved  has  a  bad  reputation,  the  Risk  Rating  will  be  bumped  up 
by  some  amount. 

Cisco  engineers  showed  us  an  “internal  use  only”  table  that 
spells  out  how  different  reputations  (which  are  on  a  scale  from  0 
to  -10,  with  -10  being  the  worst  possible  reputation)  and  different 
levels  selected  will  affect  the  Risk  Rating,  but  told  us  that  they 
don’t  plan  to  put  this  into  the  documentation  quite  yet.  Their 
reason  is  that  they  wanted  the  ability  to  adjust  the  way  the  table 
operates  as  they  gain  more  experience  with  combining  reputation 
services  and  IPS  signatures,  and  as  they  figure  out  the  “right” 
increase  in  Risk  Rating  for  each  scenario.  -Joel  Snyder 


events  identified  by  the  IPS.  In  other  words,  an  event  linked  to  a  ‘bad’  IP 
address  will  result  in  an  even  higher  Risk  Rating. 

Risk  Rating  is  a  Cisco-proprietary  value,  from  0  to  100,  that  is  computed 
for  every  event  identified  by  the  IPS.  Risk  Rating  lets  you  prioritize  events 
and  decide  what  to  look  at  and  what  to  ignore. 

Prior  to  IPS  7.0,  Risk  Rating  was  computed  using  six  main  factors,  such 

as  value  of  the  asset  being  attacked, 
the  danger  of  the  attack,  the  match 
between  the  attack  and  the  target 
operating  system,  the  quality  of 
the  signature  and  so  on.  With  IPS 
7.0,  another  factor  can  be  thrown 
into  the  mix:  the  reputation  of  the 
attacker  as  determined  by  Cisco’s 
SensorBase. 


Testing  Global  Correlation 
Inspection 

In  Cisco’s  IPS  products,  every  event 
has  a  Risk  Rating  and  the  security 
manager  generally  defines  three 
bands  of  risks:  low,  medium  and 
high.  For  each  of  the  bands,  you 
can  then  select  a  set  of  actions,  from 
logging  that  an  event  occurred  to 
actively  blocking  all  traffic  from 
a  particular  IP  address  for  some 
period  of  time.  Risk  Ratings  aren’t  new  —  what’s  new  is  the  addition  of 
reputation  information  in  7.0. 

Global  Correlation  Inspection  raises  the  Risk  Rating  for  any  event  when 
one  of  the  IP  addresses  involved  has  a  bad  reputation. 

The  difference  between  Reputation  Filtering  and  Global  Correlation 
Inspection  is  pretty  important:  with  Reputation  Filtering  turned  on,  an 
extremely  bad  reputation  of -10  will  cause  all  traffic  to  be  dropped.  With 
Global  Correlation  Inspection  turned  on,  bad  reputations  will  only  cause 
Risk  Ratings  of  events  to  be  raised. 

Global  Correlation  Inspection  is  well  integrated  into  the  reporting  and 
analysis  tools  in  IPS  Manager  Express,  and  we  were  easily  able  to  see 
reputation  data  mixed  in  with  each  IPS  event.  What  we  couldn’t  easily  see, 
however,  was  the  effect  that  reputation  data  had  on  the  event  information. 
It  would  have  been  nice  to  have  a  ‘before’  and  ‘after’  column  so  we  could  see 
what  Global  Correlation  Inspection  was  doing. 

Even  with  several  weeks  of  work,  we  found  it  difficult  to  understand 
and  get  comfortable  with  Global  Correlation  Inspection  because  of  a  lack 
of  reporting  information.  Cisco  could  make  the  lives  of  security  managers 
easier  by  giving  them  more  information  about  exactly  what  is  going  on 
with  each  event. 

Ultimately,  we  found  that  having  the  reputation  information  available 
with  every  event  gave  us  two  significant  benefits:  it  let  us  deal  with  events 
more  quickly,  and  the  change  in  Risk  Ratings  let  us  focus  on  the  events  that 
posed  the  greatest  potential  threats. 

Reputation  information  in  the  analysis  console  turned  out  to  be  a  great 
timesaver.  Cisco’s  IPS  Manager  Express,  released  in  2008  with  IPS  soft¬ 
ware  Version  6.1  and  included  with  every  IPS  sensor,  is  a  huge  leap  for¬ 
ward  from  previous  IPS  and  intrusion-detection  system  management 
tools  from  Cisco. 

IPS  Manager  Express  handles  as  many  as  five  sensors  and  gives 


NETRESULTS 


Product 

Cisco  Intrusion  Prevention  System  v7.0  software 

Vendor 

Cisco 

www.cisco.com 

Price 

Free  upgrade  to  existing  customers 
with  support  agreements. 

Pros 

Reputation  services  can  block  known  bad  sites; 
better  analysis  using  reputation  information;  gave 
us  greater  confidence  when  blocking  traffic. 

Cons 

Some  reporting  information  missing;  tools 
to  understand  how  reputation  information 
is  being  used  not  readily  available. 

SCORING  KEY:  5:  EXCEPTIONAL;  4:  VERY  GOOD;  3:  AVERAGE; 
2:  BELOW  AVERAGE;  1:  SUBPAR  OR  NOT  AVAILABLE. 
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Testing  Reputation 
Filtering 

The  traditional  way  of  querying  a 

reputation  service  database,  by  DNS 
queries,  wouldn’t  work  in  an  intrusion- 
protection  system  environment.  Instead,  IPS 
7.0  downloads  the  entire  reputation  service 
database  and  keeps  it  frequently  updated. 

No  additional  license  is  required  to  use 
Reputation  Filtering,  but  you  must  have  an 
active  license  and  Cisco  support  agreement 
to  turn  on  downloading. 

From  there,  enabling  Reputation  Filtering 
is  as  simple  as  checking  a  single  button. 
There  are  no  thresholds  or  parameters 
to  set  —  Cisco  told  us  that  no  normal  site 
could  ever  be  blocked  by  Reputation  Filter¬ 
ing,  because  the  reputation  service  score 
required  to  block  is  -10,  as  bad  as  it  gets. 

The  IPS  7.0  software  does  have  a  “test” 
button,  which  lets  you  see  what  the  IPS 
would  have  done,  but  does  not  actually  block 
traffic  because  of  reputation  services. 

We  started  out,  as  Cisco  recommended,  by 
turning  on  Reputation  Filtering,  and  quickly 


ran  into  one  of  the  weak  parts  in  this  new 
feature:  reporting  and  status  information. 

Reputation  Filtering  blocking  does  not 
show  up  as  standard  IPS  events.  Instead,  the 
information  is  aggregated  and  reported  at 
the  bottom  of  a  10-page  obscure  text-only 
report.  What  is  available  is  network  block 
numbers  (such  as  94.232.248.0/21,  a  Rus¬ 
sian  site  hosting  such  domains  as  “trusted- 
tablets.com,”  “ultimatepillstore.com,”  and 
“viagracomparison.com")  and  the  number  of 
denied  packets  from  that  network  block. 

What  you  don't  get  is  any  background 
information  on  the  site  being  blocked,  what 
address  on  your  network  it  tried  to  con¬ 
nect  to,  or  what  TCP  or  UDP  port  is  being 
probed.  This  means  you  can’t  tell  whether 
this  site  was  simply  trying  to  send  you  spam 
or  whether  a  more  malicious  attack  was 
brewing. 

Alternatively,  you  can  see  a  report  that 
presents  a  bar  chart  showing  how  many 
packets  have  been  blocked  by  Reputation  Fil¬ 
tering,  but  it  was  one  of  the  least  informative 
uses  of  a  bar  chart  that  we've  ever  seen. 

Over  the  two  week  test  period,  we  didn’t 
see  a  huge  number  of  denied  packets  —  an 


average  of  about  one  per  minute,  or  1,500 
a  day.  If  the  Reputation  Filtering  is  simply 
taking  some  of  the  load  off  of  your  antispam 
gateway,  1,500  blocked  connections  a  day 
isn’t  worth  much  —  the  site  we  tested  Repu¬ 
tation  Filtering  with  is  already  blocking  about 
400,000  connections  a  day  using  reputation 
services  with  an  antispam  gateway. 

On  the  other  hand,  if  the  traffic  coming  in 
isn't  spam,  that  adds  up  to  a  serious  number 
of  probable  attacks  each  day.  Remember¬ 
ing  that  these  packets  were  seen  behind  the 
firewall:  in  other  words,  after  all  the  usual 
port  scans  and  invalid  connects  were  filtered 
out.  So,  the  Cisco  IPS  certainly  blocked  a  lot 
of  traffic  that  the  firewall  let  through. 

Our  testing  didn't  turn  up  any  false 
positives.  We  randomly  picked  25  net¬ 
works  blocked  by  the  Reputation  Filtering 
and  investigated  each  one,  searching  the 
Internet  for  reasons  that  the  network  blocks 
were  listed  and  our  own  logs  to  see  if  these 
blocks  had  made  legitimate  connections 
in  the  recent  past.  We  concluded  that  each 
one  of  them  should  have  been  blocked  and 
that  there  were  no  legitimate  users  on  the 
blocked  networks.  -Joel  Snyder 


competitive  products  from  Juniper  and  Sourcefire  some  significant  com¬ 
petition.  Even  with  the  benefits  in  IPS  Manager  Express,  we  found  that 
we  were  frequently  referring  to  the  reputation  data  included  with  each 
event  to  help  understand  which  needed  to  be  looked  at  and  which  could 
be  ignored. 

For  example,  one  day  we  had  72  events  that  the  Cisco  IPS  had  identi¬ 
fied  as  an  attempt  to  use  Web  servers  on  our  network  as  HTTP  proxies.  Of 
those  72  events,  71  came  from  addresses  with  fairly  bad  reputations:  -3.8 
and  -5.5.  Because  we’re  pretty  confident  that  the  Web  servers  are  config¬ 
ured  correctly,  we  ignored  those  events  as  normal  probes  for  misconfig- 
ured  Web  servers. 

However,  one  of  the  events  came  from  an  address  without  a  bad  reputa¬ 
tion.  We  investigated  and  found  one  of  our  own  users  with  a  misconfigured 
laptop  on  the  road.  Without  the  reputation  service,  we  never  would  have 
investigated  any  of  the  events,  but  because  one  event  stood  out,  we  not  only 
investigated  the  problem  but  also  resolved  a  configuration  issue. 

The  second  benefit  to  come  out  of  combining  reputation  services  with 
IPS  events  was  the  variation  in  Risk  Rating.  We  saw  significant  numbers 
of  events  with  modified  Risk  Ratings  because  of  negative  reputation.  In 
a  100-hour  period,  11%  of  the  high  and  medium  severity  events  had  their 
Risk  Ratings  bumped  up  because  of  negative  reputation  —  almost  2,000 
events.  By  sorting  based  on  Risk  Rating  within  each  event  type,  we  were 
drawn  to  the  events  that  the  IPS  thought  posed 
the  greatest  risk. 

One  benefit  we  hoped  to  see  out  of  reputation 
services  was  increased  confidence  in  IPS  con¬ 
nection  blocking  and  also  IPS  punitive  blocking, 
sometimes  called  shunning.  Most  IPS  products  have  an  option  to  turn  on 
punitive  blocking.  Most  security  managers  don’t  use  it,  however,  because  of 
the  potential  for  false  positives  and  self-inflicted  denial-of-service  attacks. 

We  hoped  that  negative  reputation  would  make  us  confident  enough  in 
what  the  IPS  was  telling  us  to  be  more  aggressive  about  the  blocking  fea¬ 
tures.  That’s  certainly  Cisco’s  marketing  message:  Because  the  Risk  Rating 


is  increased,  you  can  easily  select  a  different  set  of  actions  for  the  same 
event  with  different  Risk  Ratings,  such  as  alerting  on  low  risk  ratings  and 
blocking  connections  on  higher  risk  ratings. 

We  found  out  that  reputation-based  Risk  Ratings  are  not  a  magic  bullet. 
The  false  positives  we  have  seen  in  the  past  with  some  of  Cisco’s  rules  were 
no  different  with  SensorBase  input.  Adding  reputation  information  let  us 
have  a  wider  variety  of  actions  for  the  same  event  type,  but  the  primary 
responsibility  for  ensuring  that  we  weren’t  dropping  good  traffic  still  falls 
on  the  network  manager. 

We  did  eventually  set  up  different  actions  for  different  Risk  Ratings,  but 
only  after  running  the  IPS  for  two  weeks  with  blocking  set  to  audit  mode 
and  looking  at  all  the  high  risk  alerts  generated. 

In  one  sense,  risk  ratings  represent  a  limiting  factor  in  how  the  security 
manager  deals  with  reputation  information.  In  the  version  we  tested,  the 
only  way  that  reputation  information  influences  the  action  taken  on  an 
event  is  by  boosting  the  Risk  Rating.  You  can’t  look  directly  at  reputation 
information  and  other  data  and  take  action.  For  example,  there’s  no  way  to 
say  “for  any  event  on  Port  80  to  our  Webmail  server,  block  the  traffic  if  the 
reputation  is  less  than  -2”. 

Our  testing  showed,  however,  that  there  are  significant  benefits  to  the 
security  manager  that  come  from  combining  IPS  event  data  with  reputa¬ 
tion  information  using  Cisco’s  Global  Correlation  Inspection. 

On  the  analysis  side,  we  found  ourselves 
focusing  on  the  most  important  data  when 
reputation  information  was  available.  On  the 
configuration  side,  reputation  data  added  to  a 
carefully  configured  IPS  that  let  us  use  features 
such  as  blocking  with  greater  confidence. 

The  result  is  that  Cisco  IPS  7.0  continues  to  increase  the  value  of  the  IPS 
in  providing  security  visibility  as  well  as  threat  mitigation.  ■ 

Snyder,  a  Network  World  Test  Alliance  partner,  is  a  senior  partner  at 
Opus  One  in  Tucson,  Ariz.  He  can  be  reached  at  Joel.Snyder@opusl.com. 


■  GO  ONLINE  to  see  how  we  conducted 
the  test:  http://tinyurl.com/lw4ocg 
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i  CLEAR  CHOICE  I  l  blade  server 

IBM  BladeCenter  HS22  delivers 

A  virtualization-ready  combo  of  performance,  energy  efficiency  and 
manageability  BY  JOHN  BASS 


ptimizing  power  consumption,  CPU  performance  and  form 
factor  is  a  never-ending  battle  in  server  design  and  IBM’s  Bla¬ 
deCenter  HS22  succeeds  on  all  counts. 

The  HS22  that  we  tested  came  with  two  eight-core  Intel  5570 
Nehalem  processors,  two  lOGigabit  Ethernet  network  interface 
cards,  50GB  SSD  drives,  150GB  15k  hard  drives  and  48GB  of  RAM. 

Intel  claims  improved  performance  and  power  consumption  with  their 
new  Nehalem  processors,  so  we  tested  the  HS22  against  an  IBM  HS20 
blade  with  Intel  Core-based  processors.  The  Nehalem-based  blade  deliv¬ 
ered  a  10X  increase  in  performance,  while 
the  amount  of  energy  per  transaction  was 
only  12%  of  the  Core-based  Xeon  processor. 

In  terms  of  total  power  consumption,  the 
Nehalem  processors  consumed  17%  more 
power  than  the  Xeon-based  system,  but  that’s 
a  pretty  good  bargain  when  you’re  gaining  a 
10X  boost  in  performance. 

IBM  claims  that  solid  state  drives  (SSD) 
are  desirable  because  of  their  increased 
power  efficiency  as  compared  with  conven¬ 
tional  rotating  spindle  hard  drives. 

We  compared  the  power  consumption  of 
the  two  drive  types  in  the  HS22  and  found 
that  the  SSDs  use  5  watts  less  power  at  idle 
than  a  conventional  spindle  drive  and  5  watts 
less  power  under  load. 

However,  spindle  drives  can  sustain  37% 
more  bandwidth  with  writes  than  SSDs.  This 
translates  to  30%  more  energy  consumed 
per  megabyte  written  for  the  SSDs  than  for 
the  conventional  spindles.  In  other  words, 
spindles  are  more  efficient  than  SSDs  for 
high  I/O  rates;  SSD  drives  are  a  better  choice 
if  the  drives  aren’t  under  heavy  load. 

Our  10G  Ethernet  tests  showed  good 
network  and  I/O  performance  with  a  peak 
of  8Gbps  and  a  sustained  rate  of  7Gbps  of 
HTTP  traffic  out  of  the  server.  The  lOGbps 
daughter  card  in  our  HS22  has  two  10G  Eth¬ 
ernet  ports.  The  onboard  1G  Ethernet  ports 
remain  active  with  the  10G  Ethernet  card  in 
place. 

The  10G  Ethernet  ports  are  accessible 
from  the  rear  of  the  BladeCenter  chassis  via 
a  10G  Ethernet  switch  or  a  10G  Ethernet  pass-through  module.  The  pass¬ 
through  module  allows  direct  connection  to  a  blade’s  10G  Ethernet  port 
from  outside  the  chassis.  We  conducted  all  our  tests  with  the  10G  Ethernet 
switch  in  place.  The  chassis  has  10G  option  slots  for  a  choice  of  connection 
methods  to  the  two  internal  blade  10G  ports  if  installed. 

The  HS22  makes  a  great  virtualization  platform  because  of  the  Nehalem 
processor,  which  implements  Intel’s  virtualization  technology,  and  for  the 
large  RAM  capacity.  This  hardware  combination  opens  the  possibility  of 
running  many  virtual  machines  (VM)  on  the  blade. 

There  are  four  categories  of  management  for  the  HS22  —  hardware/ 
firmware,  resource  management,  platform  management  and  enterprise 
management.  Each  category  has  a  set  of  management  tools  and  a  loose 
definition. 


The  hardware/firmware  category  refers  to  the  hardware  and  firmware 
configuration  and  revision  management.  There  is  a  Web  interface  for  the 
network  attached  power  distribution  unit,  the  advanced  management 
module  for  the  blade  chassis  and  the  I/O  modules  such  as  the  10G  Ether¬ 
net  switch  in  the  chassis. 

These  Web  interfaces  provide  a  means  to  configure  and  manage  these 
elements  —  including  a  remote  video  console  for  viewing  the  operating 
system  video  output  through  the  chassis  management  module.  No  exter¬ 
nal  software  tools  are  needed. 

The  HS22  uses  unified  extensible  firm¬ 
ware  interface  (UEFI)  instead  of  BIOS.  This 
gives  more  flexibility  for  configuration  and 
management  of  the  blade  because  access  to 
components  isn’t  restricted  by  the  limits  of 
BIOS.  If  an  operating  system  doesn’t  sup¬ 
port  UEFI,  the  system  will  boot  into  a  ‘legacy 
mode,’  which  operates  like  BIOS  to  support 
the  non-UEFI  operating  system.  With  legacy 
mode,  the  boot  time  is  effectively  doubled. 
Because  most  all  hypervisors  are  not  UEFI 
aware,  hypervisor  boot  times  are  very  long. 

The  resource  management  category  refers 
to  the  ability  to  configure  systems  level  items. 
IBM  provides  a  Web  site  called  toolscenter, 
which  provides  access  to  a  suite  of  tools  that 
operate  at  the  resource  management  level. 

Platform  management  eases  the  manage¬ 
ment  of  multiple  blades.  Management  at  this 
level  is  implemented  by  IBM  Systems  Direc¬ 
tor.  Basic  tools  such  as  system  discovery, 
firmware  and  software  management,  and 
system  availability  monitoring  are  included 
for  free.  Other  plug-ins  to  Systems  Direc¬ 
tor,  such  as  virtualization  management  and 
energy  configuration,  can  be  purchased. 

The  highest  management  category,  called 
enterprise  management,  is  implemented 
by  IBM’s  Tivoli,  which  is  available  for  a  fee. 
Tivoli  was  not  used  in  this  review.  We  found 
the  management  platforms  to  be  comprehen¬ 
sive,  easy  to  use  and  efficient. 

It  is  worth  noting  that  IBM  does  a  good 
job  with  backward  compatibility.  The  HS22 
will  work  in  a  6-year-old  chassis  with  no 
problems.  The  blade  is  easy  to  install  and  remove  from  the  chassis.  Once 
removed,  the  blade  cover  can  be  removed  without  tools  to  expose  the  inter¬ 
nal  components. 

The  HS22  is  a  well-designed  blade  that’s  easy  to  use  with  lots  of  manage¬ 
ment  tools.  The  Nehalem  processor  performance  and  energy  efficiency  is 
astounding.  The  10G  Ethernet  networking  performed  as  expected.  Finally, 
the  combination  of  Nehalem  processors,  10G  Ethernet,  and  lots  of  RAM 
make  the  HS22  a  great  choice  for  virtualization.  ■ 

Bass  is  the  technical  director  of  NEXT  Services,  an  IT  extension  service  of 
North  Carolina  State  University.  He  can  be  reached  at  john_bass@ncsu. 
edu.  Michael  Brown,  NEXT  Services  Engineer,  assisted  with  the  testing.  He 
can  be  reached  at  msbrown3@ncsu.edu. 


NETRESULTS 

Product  BladeCenter  HS22  Blade 

Vendor  IBM 

www-03.ibm.com/ 

bladecenter/hardware/ 

servers/hs22/index.html 

Price  $10,476  as  tested 

Pros  Fast  and  energy-efficient  CPU, 

strong  management  offerings. 

Cons  Long  boot  times  for  non- 

UEFI  boot  images. 

Score  4.1 


SCORECARD 

Action  Weight  Score 

Performance  30%  4 

Features  20%  4 

Energy  efficiency  20%  4 

Manageability  20%  4.5 

Documentation  10%  4 

Total  score  4.1 


SCORING  KEY:  5:  EXCEPTIONAL;  4:  VERY  GOOD;  3:  AVERAGE; 
2:  BELOW  AVERAGE;  1:  SUBPAR  OR  NOT  AVAILABLE. 
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Virtualization,  you  can  dramatically  cut  costs  by  consolidate 
ing  power  consumption,  and  accelerating  application  deployn 
virtualization  solution  is  approximately  one-third  the 
parable  solution  from  VMware.  Now  you  can  virtualize  withoi 

nk.  Explore  the  virtual  a'  microsoft.com/virtualization 


Virtualization 


Microsoft 


Based  on  a  comparison  of  Windows  Server «  2008  Enterprise  with  Hyper-V™  and  Microsoft®  System  Center  Server  Management  Suite  Enterprise  with  VMware's  VMware  Infrastructure;.;/ 
Enterprise  with  VMware  vCenter  Server.  Includes  two  years'  support  costs  for  both.  Based  on  Microsoft  estimated  retail  prices  and  published  VMwaie  prices  available  at  .y,M 
https://www.vniware.com/vmwarestore  as  of  02/04/2009.  Actual  reseller  prices  may  vary. 
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HOW  FAR  WILL  YOU  TAKE  VIRTUAL? 

f  CLEAR  CHOICE  TEST  BLACKBERRY  ENTERPRISE  SERVER  5.0 

Smart  choice  for  mobile  rollouts 

New  software  offers  powerful  Web-based  admin  tools,  high-availability 

BY  ROB  SMITHERS 


any  factors  enter  in  when  a  user  chooses  between  a  Black- 
Berry,  an  iPhone  or  another  device  —  there’s  coolness,  cost, 
cachet,  ease  of  use,  features,  apps.  But  for  IT  execs  deploying 
a  fleet  of  mobile  devices,  it’s  all  about  management. 

We  tested  Research  in  Motion’s  BlackBerry  Enterprise 
Server  5.0  and  found  that  it’s  an  easy-to-use,  Web-based  tool  that  provides 
centralized  administration,  high  availability  and  the  ability  to  set  rules  and 
policies  on  a  granular  level. 

There  are  two  deployment  options:  an  upgrade  or  a  new  installation.  We 
had  BES  v4.1.4.l5  running  already,  so  we  used  the  new  BES  Transporter 
Tool  to  complete  a  seamless  migration.  We  also  did  an  out-of-the-box 
installation  the  same  way  a  new  enterprise  customer  would. 

On  a  scale  of  1  to  10  (10  being  the  best),  we  give  the  BES  Transporter  Tool 
a  9.  Our  migration,  with  five  users,  took  less  than  30  minutes. 

BlackBerry  Administration  Service  provides  Web-based  administra¬ 
tion  access,  with  easy  navigation  tools  that  let  administrators  perform  all 
tasks  from  one  centralized  location. 

With  Administration  Service,  an  admin  can  publish  and  push  updates 
and  applications  to  one  user  or  groups  of  users.  The  administrator  can  also 
identify  unauthorized  applications  and  prevent  users  from  downloading, 
using  or  updating  prohibited  programs  or  applications.  When  a  Black¬ 
Berry  device  is  activated,  the  new  security  policy  supersedes  any  previ¬ 
ously  installed  programs  or  policies. 

The  prior  version  of  BES  featured  BlackBerry  Manager,  a  thick-client, 
desktop-based  application  that  limited  the  flexibility  of  IT  administrators. 
The  new  Administration  Service  offers  more  flexibility,  allowing  adminis¬ 
trators  to  monitor  and  control  the  smartphone  network  through  the  Inter¬ 
net  Explorer  Web  browser. 

With  BES  5,  administrators  can  tailor  and  customize  roles,  skills  and 
permissions,  creating  different  levels  of  access  to  the  server  for  limited 
administrative  roles,  such  as  password  reset,  activate  new  user  and  edit 
security  policies. 

The  console  is  streamlined;  the  administrator  can  not  only  customize 
by  skill  sets,  but  partition  to  different  classes  of  users.  Users  can  belong 
to  multiple  groups,  and  groups  can  belong  to  other  groups.  When  a  user 
is  moved  to  another  group,  the  user  automatically  inherits  the  settings  of 
that  group. 

You  can  also  schedule  all  administration  tasks,  policy  updates  and  appli¬ 
cations  during  low-traffic  time  and  not  impact  users.  There  are  multiple 
levels  of  built-in  security  policies  available,  or  you  can  customize  a  policy 
to  meet  your  needs.  Though  these  features  were  available  in  the  previous 
release,  the  applications  are  well  structured  and  intuitive,  easier  to  admin¬ 
ister,  and  can  be  found  in  one  location. 

BES  5  provides  increased  visibility  into  the  network.  We  noted  the 
improved  color-coded  monitoring  alerts,  and  easily  identified  the  server- 
and  user-related  issues  and  status.  The  administrator  can  view  reports  on 
issues  affecting  the  performance  of  the  BES  server,  which  ensures  uninter¬ 
rupted  service  to  the  users. 

The  Threshold  Assistance  Tool  provides  monitoring  help,  allowing  IT 
to  set  acceptable  threshold  levels. 

The  high-availability  feature  supplies  fast  recovery  from  unplanned 
downtime.  With  the  1-tol  high  availability  option,  BES  5  provides  an  auto¬ 
mated  process  tailored  to  your  network  or  business  needs.  The  adminis¬ 
trator  can  force  an  upgrade  or  perform  maintenance  on  either  server,  or 
this  procedure  can  be  an  automatic  scheduled  event.  Each  administrator 
can  define  what  network  conditions  would  initiate  failover,  with  little  or 
no  disruption  to  the  user.  You  can  set  preferences  based  on  your  network 


NETRESULTS 

Product 

BlackBerry  Enterprise  Server  5.0 

Vendor 

Research  in  Motion 
www.blackberry.com 

Price 

$4,000  (20-client  license) 

Pros 

High  availability  failover  option  at  no  additional 
cost.  VMware  compatible.  Easy  to  migrate 
users,  centralized  Web-based  management. 

Cons  Supports  only  Internet  Explorer  6.0  and  7.0 

browsers.  Only  one  administrative  access 
can  be  created  during  installation.  If  this 
account  is  corrupted  or  misconfigured, 
there  is  no  way  to  access  and  administer 
the  BES  Administration  Server. 


Score  4.28 

SCORECARD 

Action 

Weight 

Score 

Performance/ 

installation 

25% 

4.3 

Management 

25% 

4.5 

Enterprise  features 

25% 

4.2 

Interoperability 

25% 

4.1 

Total  score 

4.28 

SCORING  KEY:  5:  EXCEPTIONAL:  4:  VERY  GOOD;  3:  AVERAGE; 
2:  BELOW  AVERAGE;  1:  SUBPAR  OR  NOT  AVAILABLE. 


environment  requirements. 

During  testing  we  found  that  when  manually  triggered,  the  standby 
server  takes  over  the  load  with  little  to  no  user  interruption.  The  automated 
failover  is  dependent  on  the  individual  preferences  set,  but  the  process  per¬ 
formed  in  the  same  fashion  whether  automatic  or  manually  triggered. 

BlackBerry  Device  Software  v5.0  is  scheduled  to  be  available  in  late 
2009.  We  reviewed  the  smartphone  features  currently  available  on  the 
Web  Desktop.  With  the  new  e-mail  folder  management,  we  were  able  to 
browse,  add,  rename,  delete  and  move  folders.  Through  the  Web  Desktop 
users  can  now  granularly  filter  and  select  which  e-mails  are  to  be  delivered 
to  their  BlackBerry  device.  We  were  able  to  organize  and  flag  e-mails  that 
require  follow-up  with  the  use  of  flags,  similar  to  Microsoft  Outlook. 

With  its  advanced  Web-based  features,  upgrading  to  BES  5  could 
increase  productivity  for  both  the  IT  administrator  and  smartphone 
device  users.  ■ 

Smithers  is  CEO  of  Miercom.  With  more  than  20  years  of  testing  experi¬ 
ence,  he  has  worked  in  testing,  consulting  and  network  planning  as  well 
as  hands-on  implementations  of  converged  networks.  He  can  be  reached 
at  rsmithers@miercom.com. 
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Cost-Effective  Security 
and  Compliance 

Join  us  for  our  Security  Inside  Out  Summit 

Securing  your  infrastructure  while  optimizing  compliance  is  a  tall  order  - 
and  one  that  security  executives  face  every  day.  Find  out  how  other 
companies  are  tackling  these  challenges  and  learn  what  you  can  do  right 
away  to  start  moving  your  organization  down  the  right  path. 

Attend  Network  World's  complimentary  Security  Inside  Out  Summit  on 
"Cost  Effective  Security  and  Compliance  -  an  Integrated  Approach  to 
Security,"  sponsored  by  Oracle. 


Topics  to  be  discussed  include: 

•  Essential  Lessons  for  IT  Security  &  Compliance 

•  Identity  Administration:  Compliance  &  Security  Without  Compromise 

•  Cost-Effective  Database  Centric  Information  Security 
•Achieving  Security  Nirvana  with  Advanced  Access  Management 

In  one  valuable  and  focused  morning,  you'll  identify  the  most  prevalent 
challenges,  get  access  to  experts  and  best  practices,  network  with  your 
peers,  and  rapidly  gather  answers  and  solutions  you  can  use  right  away. 

Attend  this  FREE  Summit 
by  Registering  Today! 

www.networkworld.com/orad810 
or  call  800-643-4668 


nd  be  eligible  to  WIN  A  $500  AMEX  GIFT  CARD! 
present  to  win.  Some  restrictions  apply. 
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I  San  Francisco,  CA 

J  Four  Seasons  Silicon  Valley 

H 

I  August  13 

Dallas,  TX 
Hotel  Zaza 

August  18 

j  Toronto,  ON 
j  Park  Hyatt  Toronto 

I  August  19 

j  New  York,  NY 
j  Brasserie  8  1/2 

1  August  20 

)  Los  Angeles,  CA 
I  W.  Hotel  Los  Angeles 

S  August  25 

I  Vancouver,  BC 
|  Vancouver  Pan  Pacific 


For  more  information  on  the  event  agenda  and  locations,  visit: 
www.networkworld.com/events/2009/oracle/index.html 


BACKSPIN  BY  MARK  GIBBS 

Cybersecurity:  Curiouser  and  curiouser 


I  AM  A  huge  fan  of  Lewis  Carrol’s  “Alice”  stories 
which  are  some  of  the  greatest  fantasies  of  all  time 
(by  the  way,  Disney  is  working  on  a  movie  based 
on  the  books  that  looks  fantastic  and,  with  Tim  Burton  directing,  perhaps 
Disney  won’t  “Hollywoodize”  the  story  like  it  did  with  the  1951  cartoon). 

Anyway,  one  of  the  many  memorable  scenes  from  Alice  can  be  found  in 
“Through  the  Looking  Glass”,  Chapter  V,  “Wool  and  Water”,  wherein  Alice 
is  talking  to  the  White  Queen:  “There’s  no  use  trying,”  [Alice]  said,  “one 
ca’n’t  [sic]  believe  impossible  things.” 

“I  daresay  you  haven’t  had  much  practice,”  said  the  Queen.  “When  I 
was  your  age,  I  always  did  it  for  half-an-hour  a  day.  Why,  sometimes  I’ve 
believed  as  many  as  six  impossible  things  before  breakfast.” 

I  bring  this  up  because  there  was  a  time  a  few  months  ago  when  many 
people  believed  in  six  impossible  things  about  the  proposed  cybersecurity 
office  of  the  Obama  administration:  1)  it  would  actually  be  able  to  get  beyond 
the  talking  about  it  phase;  2)  it  was  possible  to  get  government  agencies  to 
allow  another  agency  to  drive  their  IT;  3)  an  implementable  cybersecurity 
strategy  could  be  defined;  4)  such  a  plan  could  actually  be  put  in  place  in  a 
meaningful  time  frame;  5)  the  funds  necessary  to  implement  this  strategy 
could  be  found;  and  6)  anyone  who  took  the  job  could  survive  the  politics. 

In  short,  people  believed  in  these  things  not  before  breakfast  but  before 
taking  office.  They  even  believed  them  for  a  while  afterwards.  But  now,  not 
so  much.  Proving  my  point,  last  week,  Melissa  Hathaway,  Obama’s  act¬ 
ing  cybersecurity  chief  since  February  2009,  announced  her  resignation, 
claiming  it  was  for  “personal  reasons.” 

Hathaway  was  a  fantastic  candidate  for  the  job,  boasting  an  excellent 
and  relevant  resume.  But  really,  what  chance  did  she  have?  The  issues 
of  cybersecurity  are  hard  for  non-IT  people  in  general  and  politicians  in 


particular  to  understand,  and  the  consequences  of  implementing  a  real 
strategy  are  a  political  nuclear  bomb. 

According  to  the  Wall  Street  Journal,  “People  familiar  with  the  matter  said 
Ms.  Hathaway  has  been  ‘spinning  her  wheels’  [and  that]  the  president’s 
economic  advisers  sought  to  marginalize  her  politically  [...]  after  she  said 
it  should  consider  options  for  regulating  some  private-sector  entities  to 
ensure  they  secure  their  networks”. 

Can  you  imagine  the  political  pressure  from  the  financial  community, 
law  enforcement  and  the  medical  industry  against  having  to  comply  with  a 
whole  new  collection  of  IT-related  regulations  and  having  to  undergo  heav¬ 
ens  knows  what  kind  of  audits?  And  I  bet  the  pushback  from  commercial 
concerns  was  a  walk  in  the  park  compared  with  the  civil  service  in- fighting. 

As  Hathaway  wrote  in  a  blog  on  May  29:  “Protecting  cyberspace  requires 
strong  vision  and  leadership  and  will  require  changes  in  policy,  technology, 
education,  and  perhaps  law ...  We  are  late  in  addressing  this  critical  national 
need  and  our  response  must  be  focused,  aggressive,  and  well-resourced.” 
These  words  seriously  understated  the  scope  of  the  challenges  that  faced 
her  and  her  successor  should  anyone  be  crazy  enough  to  attempt  the  job. 

In  Alice's  Adventures  in  Wonderland,  Chapter  VI,  “Pig  and  Pepper”,  the 
Cheshire  Cat  disappears  starting  with  its  tail  leaving  nothing  but  its  smile 
and  Alice  comments:  “...a  grin  without  a  cat!  It’s  the  most  curious  thing  I 
ever  saw  in  all  my  life!” 

Paraphrasing  Alice  we  might  say  something  along  the  lines  of,  “a  White 
House  office  for  cybersecurity  without  a  head!  It’s  the  most  curious  thing 
I  ever  saw  in  all  my  life!”  81 

Gibbs  dances  a  quadrille  in  Ventura,  Calif.  Send  your  little  Bill  to  back- 
spin@gibbs.com. 


NETBUZZ  BY  PAUL  McNAMARA 

Unreliable  is  a  tough  reputation  to  shake 


TWITTER  USED  TO  be  down  so  often  it  made  the 
site’s  “fail  whale”  famous  enough  to  be  profiled 
in  The  New  York  Times.  However,  as  Twitter’s  pop¬ 
ularity  has  exploded  and  the  hoopla  surrounding  it  has  become  overbear¬ 
ing,  the  fledging  company  has  gotten  its  uptime  act  together. 

But  last  Thursday  was  an  exception.  In  this  case,  a  denial-of-service 
attack  was  the  culprit,  but  to  the  Twitter  community  and  its  ever-more- 
vocal  critics,  this  was  just  one  more  example  of  the  company  not  living  up 
to  its  hype. 

Wrote  one  blogger:  “Twitter  is  down!  This  seems  to  be  happening  more, 
recently,  than  in  the  last  several  months.  What’s  going  on,  guys?  It’s  going  to 
be  tough  to  become  the  next  AT&T  if  you’re  dead  at  9  a.m.  on  a  Thursday.” 

Many  of  the  early  headlines  about  the  outage  carried  the  word  “again.” 

While  the  data  doesn’t  support  the  suggestion  that  Twitter  downtime  is 
happening  more  often,  the  impression  does  show  how  difficult  it  can  be  for 
a  company  to  shake  a  bad  reputation. 

According  to  the  Web  monitoring  company  Pingdom,  this  was  Twit¬ 
ter’s  first  outage  of  more  than  five  minutes  since  June  16.  Over  the  past 
six  months,  the  site  has  had  just  less  than  eight  hours  of  downtime  for  an 
uptime  record  of  99.8%. 

Pingdom  first  flagged  Twitter’s  improved  uptime  performance  in  a 
report  released  last  February  that  noted  the  site  had  84  hours  of  downtime 
in  2008,  the  worst  performance  among  15  social  networking  companies. 
“A  full  84  percent  of  Twitter’s  downtime  came  during  the  first  half  of 2008, 
when  the  service  was  still  struggling  with  stability  issues,”  Pingdom  wrote. 
“July  and  onward  has  seen  a  significant  improvement  for  the  service.” 

That  improvement  continued  through  the  first  seven  months  of  2008, 
Thursday’s  nearly  three-hour,  attack-related  outage  notwithstanding. 


Twitter  is  back  up  (if  not  exactly  humming)  as  I  type.  What  will  take  a 
while  longer,  apparently,  is  for  the  company  to  recover  its  reputation. 

1  now  pronounce  you  monetized’ 

If  there’s  anything  worse  than  a  fabulous  YouTube  video  being  pulled  off¬ 
line  over  a  copyright  beef  it  might  be  a  content  creator  not  being  fairly  com¬ 
pensated  for  the  use  of  his  or  her  efforts.  (Hey,  consider  my  line  of  work.) 

So  it’s  kind  of  cool  to  see  both  sides  win  in  the  case  of  “Jill  and  Kevin’s 
Big  Day”  wedding  video  vs.  Chris  Brown’s  hit  recording  “Forever.”  (If  you 
haven’t  seen  the  video,  head  for  YouTube;  we’ll  wait.) 

What  great  fun ...  at  least  until  the  video  went  hyper-viral  and  accumu¬ 
lated  more  than  10  million  views  in  less  than  a  week.  It  rocketed  to  the  tops 
of  social  media  sites  such  as  Digg  and  Reddit.  The  wedding  party  partici¬ 
pants  were  instant  TV  morning-show  stars,  too. ...  But  Chris  Brown  had 
yet  to  be  heard  from. 

An  in-house  YouTube  blogger  explains  what  happened  next: 

“At  YouTube,  we  have  sophisticated  content  management  tools  in  place 
to  help  rights  holders  control  their  content  on  our  site.  The  rights  holders 
for  ‘Forever’  used  these  tools  to  claim  and  monetize  the  song,  as  well  as  to 
start  running  Click-to-Buy  links  over  the  video,  giving  viewers  the  oppor¬ 
tunity  to  purchase  the  music  track  on  Amazon  and  iTunes.  As  a  result,  the 
rights  holders  were  able  to  capitalize  on  the  massive  wave  of  popularity 
generated  by  ‘JK  Wedding  Entrance  Dance’  —  in  the  last  week,  searches 
for  ‘Chris  Brown  Forever’  on  YouTube  have  skyrocketed,  making  it  one  of 
the  most  popular  queries  on  the  site.” 

And  everyone  lives  happily  ever  after.  ■ 

/  now  pronounce  my  in-box  open:buzz@nww.com. 
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Veti70nwireless 


What  can  your  mobile  workforce 
do  on  our  Network? 

Pretty  much  anything  they  can 
do  at  their  desks. 

Going  to  work  no  longer  means  going  to  an  office.  With  Mobile  Broadband  Internet  access,  your  team  can  email 
clients  instantly,  file  paperwork  electronically  and  collaborate  with  team  members  remotely  on  America's  Largest 
and  Most  Reliable  3G  Network.  See  how  sharing  information  in  real  time  makes  a  real  difference  to  your  business. 


Contact  us  for  solutions  customized  to  your  business  needs. _ _ 

Call  1.800.VZW.4BIZ  Click  verizonwireless.com/professionalservices 


Coverage  not  available  everywhere;  see  verizonwireless.com  for  details.  ©2009  Verizon  Wireless. 


EFFORTLESSLY  HOLD  YOUR  DATA 


at  a  fraction  of  the  cost  and  footprint. 

Imagine  storage  and  data  management  solutions  smart  enough  to  support  the  data  you  need,  and  not  a  lot  of  dead  weight. 

It’s  possible  when  you  partner  with  NetApp.  Our  industry-leading  solutions  use  deduplication  and  other  space-saving  technologies 
to  help  you  store  data  efficiently  and  reduce  your  footprint  by  50%  or  more.  So  you  can  manage  exponential  growth  while 
minimizing  your  storage  investment-all  with  the  support  of  a  team  that  will  exceed  your  expectations.  See  how  we  can  help 
your  business  go  further,  faster.  Find  out  how  you  can  use  50%  less  storage,  guaranteed,*  at  netapp.com/efficiency. 

NetApp- 

Go  further,  faster 


©  2008  NetApp.  All  rights  reserved.  Specifications  are  subject  to  change  without  notice.  NetApp,  the  NetApp  logo,  and  Go  further,  faster  are  trademarks  or  registered  trademarks  of  NetApp,  Inc.  in  the  United 
States  and/or  other  countries.  All  other  brands  or  products  are  trademarks  or  registered  trademarks  of  their  respective  holders  and  should  be  treated  as  such.  'This  guarantee  and  related  Program  is  limited  to 
the  terms  set  forth  in  the  Program  Guide  and  Acknowledgement  For  50%  Virtualization  Guarantee  Program  document,  applicable  only  to  prospective  orders  placed  after  the  Program  effective  date  and  is  dependent 
upon  your  compliance  with  the  terms  and  conditions  set  forth  in  this  document  and  any  of  the  instruction  sets  and  specifications  set  forth  in  the  referenced  documents.  NetApp’s  sole  and  exclusive  liability  and 
ygur  sole  and  exclusive  remedy  associated  with  the  terms  of  this  guarantee  and  related  Program  is  the  provision  by  NetApp  of  the  additional  storage  capacity  as  set  forth  in  this  guarantee  and  related  Program. 


